← back
CVE-2023-21260

CVE-2023-21260

EPSS 0.1%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
13 Jul 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In notification access permission dialog box, malicious application can embedded a very long service label that overflow the original user prompt and possibly contains mis-leading information to be appeared as a system message for user confirmation.
Affected products
Google · Android