{"id":"ASB-A-305926929","details":"In migrateNotificationFilter of NotificationManagerService.java, there is a possible failure to persist notifications settings due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-305926929","CVE-2024-23713"],"modified":"2026-05-26T15:46:26.044149249Z","published":"2024-04-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2024-04-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/base/+/ffd616dc3b919fe7705dbc7a25868483ae45466b"}],"affected":[{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14-next:0"},{"fixed":"14-next:2024-04-01"}]}],"versions":["14-next"],"ecosystem_specific":{"spl":"2024-04-01","fixes":["https://android.googlesource.com/platform/frameworks/base/+/bfa04e208995b05eee2a5336667f4e2dcd19fd30"],"types":["EoP"],"severity":"High","vanir_signatures":[{"source":"https://android.googlesource.com/platform/frameworks/base/+/bfa04e208995b05eee2a5336667f4e2dcd19fd30","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["159866137442024393533120740416738820552","82412524267606024046789561910696031928","1516516712063845327806486328247921934","117012358907298371167160288591775411905","143503671913736220857443186668581647794"]},"signature_version":"v1","signature_type":"Line","id":"ASB-A-305926929-19a99df9","target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}},{"digest":{"function_hash":"338852985106957498778827131263151320896","length":815},"deprecated":false,"source":"https://android.googlesource.com/platform/frameworks/base/+/bfa04e208995b05eee2a5336667f4e2dcd19fd30","signature_version":"v1","signature_type":"Function","id":"ASB-A-305926929-f1b3feb2","target":{"function":"migrateNotificationFilter","file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-305926929.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2024-04-01"}]}],"versions":["12"],"ecosystem_specific":{"vanir_signatures":[{"source":"https://android.googlesource.com/platform/frameworks/base/+/c6f48b5214fe8442f7669b9b5d89bc2d6d9d433e","deprecated":false,"digest":{"length":815,"function_hash":"338852985106957498778827131263151320896"},"target":{"function":"migrateNotificationFilter","file":"services/core/java/com/android/server/notification/NotificationManagerService.java"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-305926929-bc21dd1b"},{"source":"https://android.googlesource.com/platform/frameworks/base/+/c6f48b5214fe8442f7669b9b5d89bc2d6d9d433e","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["159866137442024393533120740416738820552","82412524267606024046789561910696031928","1516516712063845327806486328247921934","117012358907298371167160288591775411905","143503671913736220857443186668581647794"]},"target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"},"signature_version":"v1","signature_type":"Line","id":"ASB-A-305926929-dc103553"}],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/c6f48b5214fe8442f7669b9b5d89bc2d6d9d433e"],"types":["EoP"],"severity":"High","spl":"2024-04-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-305926929.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2024-04-01"}]}],"versions":["12L"],"ecosystem_specific":{"vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["159866137442024393533120740416738820552","82412524267606024046789561910696031928","1516516712063845327806486328247921934","117012358907298371167160288591775411905","143503671913736220857443186668581647794"]},"deprecated":false,"source":"https://android.googlesource.com/platform/frameworks/base/+/f867b2976313ae8f152f98e75d1453ad0e899296","id":"ASB-A-305926929-051ce42c","target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"},"signature_version":"v1","signature_type":"Line"},{"digest":{"length":815,"function_hash":"338852985106957498778827131263151320896"},"deprecated":false,"source":"https://android.googlesource.com/platform/frameworks/base/+/f867b2976313ae8f152f98e75d1453ad0e899296","signature_type":"Function","id":"ASB-A-305926929-5ab6fa52","target":{"function":"migrateNotificationFilter","file":"services/core/java/com/android/server/notification/NotificationManagerService.java"},"signature_version":"v1"}],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/f867b2976313ae8f152f98e75d1453ad0e899296"],"types":["EoP"],"severity":"High","spl":"2024-04-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-305926929.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2024-04-01"}]}],"versions":["13"],"ecosystem_specific":{"spl":"2024-04-01","fixes":["https://android.googlesource.com/platform/frameworks/base/+/2ca002383116ef3427f8a4f5c9b2a1aaab49c4d1"],"types":["EoP"],"severity":"High","vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["159866137442024393533120740416738820552","82412524267606024046789561910696031928","1516516712063845327806486328247921934","117012358907298371167160288591775411905","143503671913736220857443186668581647794"]},"deprecated":false,"source":"https://android.googlesource.com/platform/frameworks/base/+/2ca002383116ef3427f8a4f5c9b2a1aaab49c4d1","signature_version":"v1","signature_type":"Line","id":"ASB-A-305926929-7641793f","target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}},{"source":"https://android.googlesource.com/platform/frameworks/base/+/2ca002383116ef3427f8a4f5c9b2a1aaab49c4d1","deprecated":false,"digest":{"length":815,"function_hash":"338852985106957498778827131263151320896"},"target":{"function":"migrateNotificationFilter","file":"services/core/java/com/android/server/notification/NotificationManagerService.java"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-305926929-b2f884c9"}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-305926929.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14:0"},{"fixed":"14:2024-04-01"}]}],"versions":["14"],"ecosystem_specific":{"vanir_signatures":[{"source":"https://android.googlesource.com/platform/frameworks/base/+/85ccbd33e3766bbd22ced332cb5b9e983c2707db","deprecated":false,"digest":{"length":815,"function_hash":"338852985106957498778827131263151320896"},"signature_version":"v1","signature_type":"Function","id":"ASB-A-305926929-77903ebf","target":{"function":"migrateNotificationFilter","file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}},{"source":"https://android.googlesource.com/platform/frameworks/base/+/85ccbd33e3766bbd22ced332cb5b9e983c2707db","deprecated":false,"digest":{"threshold":0.9,"line_hashes":["159866137442024393533120740416738820552","82412524267606024046789561910696031928","1516516712063845327806486328247921934","117012358907298371167160288591775411905","143503671913736220857443186668581647794"]},"signature_version":"v1","signature_type":"Line","id":"ASB-A-305926929-d8e5cc66","target":{"file":"services/core/java/com/android/server/notification/NotificationManagerService.java"}}],"fixes":["https://android.googlesource.com/platform/frameworks/base/+/85ccbd33e3766bbd22ced332cb5b9e983c2707db"],"types":["EoP"],"severity":"High","spl":"2024-04-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-305926929.json"}}],"schema_version":"1.7.5"}