Login Sign Up

CVE-2023-21341

7.8 HIGH

📋 TL;DR

This vulnerability in Android's Permission Manager allows attackers to bypass required permissions without user interaction, potentially gaining elevated local privileges. It affects Android devices running vulnerable versions, allowing malicious apps to access protected system functions they shouldn't have permission to use.

💻 Affected Systems

Products:
  • Android
Versions: Android 14 and earlier versions
Operating Systems: Android
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the Permission Manager component in Android's framework. All devices running vulnerable Android versions are affected unless patched.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device compromise where an attacker gains full system-level access, potentially installing persistent malware, accessing all user data, and controlling device functions.

🟠

Likely Case

Malicious apps gaining unauthorized access to sensitive permissions like camera, microphone, location, or contacts without user knowledge.

🟢

If Mitigated

Limited impact if devices are fully patched and app permissions are properly managed through security policies.

🌐 Internet-Facing: LOW
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires a malicious app to be installed on the device. No user interaction needed once app is installed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Android 14 security updates (October 2023 or later)

Vendor Advisory: https://source.android.com/docs/security/bulletin/android-14

Restart Required: Yes

Instructions:

1. Check for Android system updates in Settings > System > System update. 2. Install the latest security update. 3. Restart device after installation.

🔧 Temporary Workarounds

Restrict app installations

android

Only install apps from trusted sources like Google Play Store and disable unknown sources installation

Settings > Security > Install unknown apps > Disable for all apps

Review app permissions

android

Regularly audit and revoke unnecessary app permissions

Settings > Apps > [App Name] > Permissions > Review and disable unnecessary permissions

🧯 If You Can't Patch

  • Implement mobile device management (MDM) to control app installations and permissions
  • Use Android Enterprise or similar solutions to enforce security policies and app whitelisting

🔍 How to Verify

Check if Vulnerable:

Check Android version and security patch level in Settings > About phone > Android version

Check Version:

Settings > About phone > Android version

Verify Fix Applied:

Verify security patch level is October 2023 or later in Settings > About phone > Android version

📡 Detection & Monitoring

Log Indicators:

  • Unusual permission requests in Android system logs
  • Apps accessing permissions they shouldn't have based on manifest declarations

Network Indicators:

  • Not applicable - local privilege escalation

SIEM Query:

Not applicable for typical Android deployments

📊 Metadata

CVE ID: CVE-2023-21341
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-862
Published: October 30, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-21341, you might also want to check these:

CVE-2024-6071 10.0

CVE-2024-6071 is a critical remote code execution vulnerability in PTC Creo Elements/Direct License ...

Same vulnerability type (CWE-862)
CVE-2022-0543 10.0

CVE-2022-0543 is a critical Lua sandbox escape vulnerability in Redis on Debian-based systems that a...

Same vulnerability type (CWE-862)
CVE-2024-6500 10.0

This vulnerability allows unauthenticated attackers to read and delete arbitrary files on WordPress ...

Same vulnerability type (CWE-862)