VYPR
High severity7.8NVD Advisory· Published Oct 27, 2023· Updated Jun 17, 2026

CVE-2023-40130

CVE-2023-40130

Description

In notifyTimeout of CallRedirectionProcessor, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege and background activity launch with no additional execution privileges needed. User interaction is not needed for exploitation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Google/Androidllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 16

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.