{"id":"PUB-A-272755865","details":"In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-272755865","CVE-2023-21179"],"modified":"2026-05-29T15:55:33.750044621Z","published":"2023-06-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-06-01"}],"affected":[{"package":{"name":"platform/packages/modules/Wifi","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13-next:0"},{"fixed":"13-next:2023-06-01"}]}],"versions":["13-next"],"ecosystem_specific":{"severity":"Moderate","spl":"2023-06-01","fixes":["https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c"],"types":["EoP"],"vanir_signatures":[{"match_only_versions":["13-next"],"signature_type":"Function","signature_version":"v1","deprecated":false,"source":"https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c","id":"PUB-A-272755865-45fc285f","digest":{"length":718,"function_hash":"80954735518544714308434795642535781605"},"target":{"file":"service/java/com/android/server/wifi/util/XmlUtil.java","function":"writeSecurityParamsListToXml"}},{"match_only_versions":["13-next"],"signature_type":"Line","signature_version":"v1","deprecated":false,"source":"https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c","target":{"file":"service/java/com/android/server/wifi/util/XmlUtil.java"},"id":"PUB-A-272755865-4b933f38","digest":{"line_hashes":["257306786310735472085815403518200222659","82105747385047436454389612086911943351","66439885775036546881829881831165940913","5944828380836956629038202556971143829","3772508029498409403356350456980264630","264763154302323387921420235491045632235","315279082320211373729337702294532577749","276278887840455546535740095965425589176"],"threshold":0.9}},{"match_only_versions":["13-next"],"signature_type":"Function","signature_version":"v1","deprecated":false,"source":"https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c","target":{"file":"service/java/com/android/server/wifi/util/XmlUtil.java","function":"parseSecurityParamsFromXml"},"id":"PUB-A-272755865-76e19e40","digest":{"length":1001,"function_hash":"114025694532549938339335102905705947951"}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-272755865.json"}},{"package":{"name":"platform/packages/modules/Wifi","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-06-01"}]}],"versions":["13"],"ecosystem_specific":{"severity":"Moderate","spl":"2023-06-01","fixes":["https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c"],"types":["EoP"],"vanir_signatures":[{"match_only_versions":["13"],"signature_type":"Function","signature_version":"v1","deprecated":false,"source":"https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c","id":"PUB-A-272755865-8715a7b1","digest":{"length":718,"function_hash":"80954735518544714308434795642535781605"},"target":{"file":"service/java/com/android/server/wifi/util/XmlUtil.java","function":"writeSecurityParamsListToXml"}},{"match_only_versions":["13"],"signature_type":"Line","signature_version":"v1","deprecated":false,"source":"https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c","id":"PUB-A-272755865-890958c5","digest":{"line_hashes":["257306786310735472085815403518200222659","82105747385047436454389612086911943351","66439885775036546881829881831165940913","5944828380836956629038202556971143829","3772508029498409403356350456980264630","264763154302323387921420235491045632235","315279082320211373729337702294532577749","276278887840455546535740095965425589176"],"threshold":0.9},"target":{"file":"service/java/com/android/server/wifi/util/XmlUtil.java"}},{"match_only_versions":["13"],"signature_type":"Function","signature_version":"v1","deprecated":false,"source":"https://android.googlesource.com/platform/packages/modules/Wifi/+/c2a9a9d11b4f26cb168517b15b1816016820406c","id":"PUB-A-272755865-fab06e13","digest":{"length":1001,"function_hash":"114025694532549938339335102905705947951"},"target":{"file":"service/java/com/android/server/wifi/util/XmlUtil.java","function":"parseSecurityParamsFromXml"}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/PUB-A-272755865.json"}}],"schema_version":"1.7.5"}