{"vulnerability": "CVE-2023-21275", "sightings": [{"uuid": "94fc7713-181d-4abb-859d-fefc02099ff3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21275", "type": "seen", "source": "https://t.me/cibsecurity/68517", "content": "\u203c CVE-2023-21275 \u203c\n\nIn decideCancelProvisioningDialog of AdminIntegratedFlowPrepareActivity.java, there is a possible way to bypass factory reset protections due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-15T02:20:07.000000Z"}, {"uuid": "58628111-41a0-471e-8f34-a51b7a373ada", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21275", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1238", "content": "https://github.com/Trinadh465/packages_apps_ManagedProvisioning_AOSP10_r33_CVE-2023-21275\n#github", "creation_timestamp": "2023-10-07T05:42:32.000000Z"}, {"uuid": "cda2766f-855a-4e57-8228-89a6f40bdec0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21275", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9151", "content": "#exploit\n1. CVE-2023-21275:\nGoogle Android AdminIntegFlowPrepareActivity*java LPE\nhttps://github.com/Trinadh465/packages_apps_ManagedProvisioning_AOSP10_r33_CVE-2023-21275\n\n2. CVE-2023-44962:\nUploading archive files containing symbolic links in\u00a0upload-cover-image*pl\u00a0can leak some of the content of the linked files\nhttps://github.com/ggb0n/CVE-2023-44962", "creation_timestamp": "2023-10-06T11:01:41.000000Z"}, {"uuid": "8b116274-67c8-41d5-90dd-dea24447ac57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21275", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/1280", "content": "#exploit\n1. CVE-2023-21275:\nGoogle Android AdminIntegFlowPrepareActivity*java LPE\nhttps://github.com/Trinadh465/packages_apps_ManagedProvisioning_AOSP10_r33_CVE-2023-21275\n\n2. CVE-2023-44962:\nUploading archive files containing symbolic links in\u00a0upload-cover-image*pl\u00a0can leak some of the content of the linked files\nhttps://github.com/ggb0n/CVE-2023-44962", "creation_timestamp": "2024-08-16T08:32:29.000000Z"}]}