{"id":"ASB-A-276294099","details":"In visitUris of Notification.java, there is a possible way to reveal images across users due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-276294099","CVE-2023-21288"],"modified":"2026-04-27T15:40:08.012512Z","published":"2023-08-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-08-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/base/+/726247f4f53e8cc0746175265652fa415a123c0c"}],"affected":[{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13-next:0"},{"fixed":"13-next:2023-08-01"}]}],"versions":["13-next"],"ecosystem_specific":{"severity":"High","vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["324233427981781607540306433621735949661","264942182053378596134081566774471213955","247322044271246743110306386928965046179","50405876539861166732624558246520248555"]},"source":"https://android.googlesource.com/platform/frameworks/base/+/13bfb2282f1aa51f2cc3feab865dd95fe2099740","signature_version":"v1","id":"ASB-A-276294099-8675f3e5","deprecated":false,"target":{"file":"core/java/android/app/Notification.java"},"signature_type":"Line"},{"digest":{"function_hash":"102290230980165670159391216524883580302","length":2848},"source":"https://android.googlesource.com/platform/frameworks/base/+/13bfb2282f1aa51f2cc3feab865dd95fe2099740","signature_version":"v1","id":"ASB-A-276294099-93acf9dd","deprecated":false,"target":{"function":"visitUris","file":"core/java/android/app/Notification.java"},"signature_type":"Function"}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/13bfb2282f1aa51f2cc3feab865dd95fe2099740"],"spl":"2023-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-276294099.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2023-08-01"}]}],"versions":["11"],"ecosystem_specific":{"severity":"High","vanir_signatures":[{"digest":{"function_hash":"111248229135962808590699590406878258901","length":2375},"source":"https://android.googlesource.com/platform/frameworks/base/+/9663d493142b59c65311bc09d48427d3bdde0222","signature_version":"v1","id":"ASB-A-276294099-4bd76cb2","deprecated":false,"target":{"function":"visitUris","file":"core/java/android/app/Notification.java"},"signature_type":"Function"},{"digest":{"threshold":0.9,"line_hashes":["324233427981781607540306433621735949661","264942182053378596134081566774471213955","247322044271246743110306386928965046179","50405876539861166732624558246520248555"]},"source":"https://android.googlesource.com/platform/frameworks/base/+/9663d493142b59c65311bc09d48427d3bdde0222","signature_version":"v1","id":"ASB-A-276294099-f0b9d2ff","deprecated":false,"target":{"file":"core/java/android/app/Notification.java"},"signature_type":"Line"}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/9663d493142b59c65311bc09d48427d3bdde0222"],"spl":"2023-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-276294099.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2023-08-01"}]}],"versions":["12"],"ecosystem_specific":{"severity":"High","vanir_signatures":[{"digest":{"function_hash":"143390102946370275124655086785671619060","length":2698},"source":"https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53","signature_version":"v1","id":"ASB-A-276294099-8529d90c","deprecated":false,"target":{"function":"visitUris","file":"core/java/android/app/Notification.java"},"signature_type":"Function"},{"digest":{"threshold":0.9,"line_hashes":["324233427981781607540306433621735949661","264942182053378596134081566774471213955","247322044271246743110306386928965046179","50405876539861166732624558246520248555"]},"source":"https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53","signature_version":"v1","id":"ASB-A-276294099-fe18d1d4","deprecated":false,"target":{"file":"core/java/android/app/Notification.java"},"signature_type":"Line"}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53"],"spl":"2023-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-276294099.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2023-08-01"}]}],"versions":["12L"],"ecosystem_specific":{"severity":"High","vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["324233427981781607540306433621735949661","264942182053378596134081566774471213955","247322044271246743110306386928965046179","50405876539861166732624558246520248555"]},"source":"https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53","signature_version":"v1","id":"ASB-A-276294099-30613b06","deprecated":false,"target":{"file":"core/java/android/app/Notification.java"},"signature_type":"Line"},{"digest":{"function_hash":"143390102946370275124655086785671619060","length":2698},"source":"https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53","signature_version":"v1","id":"ASB-A-276294099-7e152e04","deprecated":false,"target":{"function":"visitUris","file":"core/java/android/app/Notification.java"},"signature_type":"Function"}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53"],"spl":"2023-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-276294099.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-08-01"}]}],"versions":["13"],"ecosystem_specific":{"severity":"High","vanir_signatures":[{"digest":{"function_hash":"143390102946370275124655086785671619060","length":2698},"source":"https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53","signature_version":"v1","id":"ASB-A-276294099-3be54603","deprecated":false,"target":{"function":"visitUris","file":"core/java/android/app/Notification.java"},"signature_type":"Function"},{"digest":{"threshold":0.9,"line_hashes":["324233427981781607540306433621735949661","264942182053378596134081566774471213955","247322044271246743110306386928965046179","50405876539861166732624558246520248555"]},"source":"https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53","signature_version":"v1","id":"ASB-A-276294099-d293a69b","deprecated":false,"target":{"file":"core/java/android/app/Notification.java"},"signature_type":"Line"}],"types":["ID"],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/67cd169d073486c7c047b80ab83843cdee69bf53"],"spl":"2023-08-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-276294099.json"}}],"schema_version":"1.7.5"}