{"id":"ASB-A-296915211","details":"In registerPhoneAccount of TelecomServiceImpl.java, there is a possible way to reveal images from another user due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-296915211","CVE-2023-21394"],"modified":"2026-05-25T16:46:24.913870386Z","published":"2023-12-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-12-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/packages/services/Telecomm/+/68dca62035c49e14ad26a54f614199cb29a3393f"}],"affected":[{"package":{"name":"platform/packages/services/Telecomm","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14-next:0"},{"fixed":"14-next:2023-12-01"}]}],"versions":["14-next"],"ecosystem_specific":{"spl":"2023-12-01","vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/d0d1d38e37de54e58a7532a0020582fbd7d476b7","digest":{"length":1986,"function_hash":"207227176765998694959390134313926967894"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-296915211-b32461c3","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java","function":"registerPhoneAccount"},"deprecated":false},{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/d0d1d38e37de54e58a7532a0020582fbd7d476b7","digest":{"line_hashes":["295496548523600132600918931347627812221","98883504818020593432937052691191116289","179418671088857854112229111623880688265","18042078950884745760759693032797583349","105971952947483133333852635565005326055","200786330777746840925027310383577188374","43830602195665199654352983819263559396","217752779841662555353547509019060508006","268464229758669283230198629380569799776"],"threshold":0.9},"signature_version":"v1","signature_type":"Line","id":"ASB-A-296915211-cdda15e6","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java"},"deprecated":false}],"fixes":["https://android.googlesource.com/platform/packages/services/Telecomm/+/d0d1d38e37de54e58a7532a0020582fbd7d476b7"],"severity":"High","types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-296915211.json"}},{"package":{"name":"platform/packages/services/Telecomm","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2023-12-01"}]}],"versions":["11"],"ecosystem_specific":{"spl":"2023-12-01","vanir_signatures":[{"target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java"},"digest":{"line_hashes":["295496548523600132600918931347627812221","98883504818020593432937052691191116289","179418671088857854112229111623880688265","18042078950884745760759693032797583349","105971952947483133333852635565005326055","200786330777746840925027310383577188374","3579083399976250683225662282095965626","217752779841662555353547509019060508006","268464229758669283230198629380569799776"],"threshold":0.9},"signature_version":"v1","signature_type":"Line","id":"ASB-A-296915211-a694898b","source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","deprecated":false},{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"length":1792,"function_hash":"335837529287653836023728431626971903636"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-296915211-ca8a1156","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java","function":"registerPhoneAccount"},"deprecated":false}],"fixes":["https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42"],"severity":"High","types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-296915211.json"}},{"package":{"name":"platform/packages/services/Telecomm","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2023-12-01"}]}],"versions":["12"],"ecosystem_specific":{"spl":"2023-12-01","vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"length":1792,"function_hash":"335837529287653836023728431626971903636"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-296915211-14f9f681","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java","function":"registerPhoneAccount"},"deprecated":false},{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"line_hashes":["295496548523600132600918931347627812221","98883504818020593432937052691191116289","179418671088857854112229111623880688265","18042078950884745760759693032797583349","105971952947483133333852635565005326055","200786330777746840925027310383577188374","3579083399976250683225662282095965626","217752779841662555353547509019060508006","268464229758669283230198629380569799776"],"threshold":0.9},"signature_version":"v1","signature_type":"Line","id":"ASB-A-296915211-58babba7","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java"},"deprecated":false}],"fixes":["https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42"],"severity":"High","types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-296915211.json"}},{"package":{"name":"platform/packages/services/Telecomm","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2023-12-01"}]}],"versions":["12L"],"ecosystem_specific":{"spl":"2023-12-01","vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"line_hashes":["295496548523600132600918931347627812221","98883504818020593432937052691191116289","179418671088857854112229111623880688265","18042078950884745760759693032797583349","105971952947483133333852635565005326055","200786330777746840925027310383577188374","3579083399976250683225662282095965626","217752779841662555353547509019060508006","268464229758669283230198629380569799776"],"threshold":0.9},"signature_version":"v1","signature_type":"Line","id":"ASB-A-296915211-daaad7bc","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java"},"deprecated":false},{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"length":1792,"function_hash":"335837529287653836023728431626971903636"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-296915211-f8cfd043","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java","function":"registerPhoneAccount"},"deprecated":false}],"fixes":["https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42"],"severity":"High","types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-296915211.json"}},{"package":{"name":"platform/packages/services/Telecomm","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-12-01"}]}],"versions":["13"],"ecosystem_specific":{"spl":"2023-12-01","vanir_signatures":[{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"length":1792,"function_hash":"335837529287653836023728431626971903636"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-296915211-3178de1a","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java","function":"registerPhoneAccount"},"deprecated":false},{"source":"https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42","digest":{"line_hashes":["295496548523600132600918931347627812221","98883504818020593432937052691191116289","179418671088857854112229111623880688265","18042078950884745760759693032797583349","105971952947483133333852635565005326055","200786330777746840925027310383577188374","3579083399976250683225662282095965626","217752779841662555353547509019060508006","268464229758669283230198629380569799776"],"threshold":0.9},"signature_version":"v1","signature_type":"Line","id":"ASB-A-296915211-d6c49de6","target":{"file":"src/com/android/server/telecom/TelecomServiceImpl.java"},"deprecated":false}],"fixes":["https://android.googlesource.com/platform/packages/services/Telecomm/+/a604311f86ea8136ca2ac9f9ff0af7fa57ee3f42"],"severity":"High","types":["ID"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-296915211.json"}}],"schema_version":"1.7.5"}