ASB-A-256237041

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-256237041.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-256237041

Aliases

A-256237041
CVE-2023-20940

Published

2023-02-01T00:00:00Z

Modified

2026-04-29T15:10:00.007170Z

Summary

[none]

Details

In the Android operating system, there is a possible way to replace a boot partition due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/build

Package

Name: platform/build

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13:0

Fixed

13:2023-02-01

Affected versions

Other

Ecosystem specific

{
    "spl": "2023-02-01",
    "fixes": [
        "https://android.googlesource.com/platform/build/+/425f7d1cb3fc5c1adc740db546c5b18227ea3c82"
    ],
    "types": [
        "EoP"
    ],
    "severity": "High"
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-256237041.json"