Loading HuntDB...

GHSA-wxp6-wm3h-86w8

GitHub Security Advisory

⚠ Unreviewed HIGH Has CVE

Advisory Details

In bindPlayer of MediaControlPanel.java, there is a possible launch arbitrary activity in SysUI due to Unsafe Intent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-271845008

Related CVEs

Key Information

GHSA ID
GHSA-wxp6-wm3h-86w8
Published
June 15, 2023 9:30 PM
Last Modified
April 4, 2024 4:52 AM
CVSS Score
7.5 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: September 20, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.