CVE-2023-40130 Information

Description

In onBindingDied of CallRedirectionProcessor.java there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege and background activity launch with no additional execution privileges needed. User interaction is not needed for exploitation.

Reference

https://android.googlesource.com/platform/packages/services/Telecomm/+/5b335401d1c8de7d1c85f4a0cf353f7f9fc30218 https://source.android.com/security/bulletin/2023-10-01