Medium severity4.4NVD Advisory· Published Mar 24, 2023· Updated Jun 17, 2026
CVE-2023-20956
CVE-2023-20956
Description
In Import of C2SurfaceSyncObj.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-240140929
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- source.android.com/security/bulletin/2023-03-01nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.