How severe is CVE-2023-21176?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2023-21176?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2023-21176

MEDIUM Year: 2023

CVSS v3 Score

4.4

Medium

Weakness Type

CWE-400

View all →

Vulnerability Description

In list_key_entries of utils.rs, there is a possible way to disable user credentials due to resource exhaustion. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-222287335

CVE-2018-17977

MEDIUM

CVSS:4.4(Medium)

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets, which allows local users to cause a denial of service (memory consumpti...

CWE-4002018

CVE-2021-0008

MEDIUM

CVSS:4.4(Medium)

Uncontrolled resource consumption in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow privileged user to potentially enable denia...

CWE-4002021

CVE-2021-0092

MEDIUM

CVSS:4.4(Medium)

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

CWE-4002021

CVE-2022-0353

MEDIUM

CVSS:4.4(Medium)

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrativ...

CWE-4002022