{"id":"PUB-A-222287335","details":"In list_key_entries of utils.rs, there is a possible way to disable user credentials due to resource exhaustion. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-222287335","CVE-2023-21176"],"modified":"2026-05-28T15:16:54.500952700Z","published":"2023-06-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-06-01"}],"affected":[{"package":{"name":"platform/system/security","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13-next:0"},{"fixed":"13-next:2023-06-01"}]}],"versions":["13-next"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/system/security/+/1be9d2754cf955011c0e0cdb32fecde8883bb6e6"],"severity":"Moderate","types":["DoS"],"spl":"2023-06-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-222287335.json"}},{"package":{"name":"platform/system/security","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-06-01"}]}],"versions":["13"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/system/security/+/1be9d2754cf955011c0e0cdb32fecde8883bb6e6"],"severity":"Moderate","types":["DoS"],"spl":"2023-06-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-222287335.json"}}],"schema_version":"1.7.5"}