CVE-2023-44121

The vulnerability is an intent redirection in LG ThinQ Service ("com.lge.lms2") in the "com/lge/lms/things/ui/notification/NotificationManager.java" file. This vulnerability could be exploited by a third-party app installed on an LG device by sending a broadcast with the action "com.lge.lms.things.notification.ACTION". Additionally, this vulnerability is very dangerous because LG ThinQ Service is a system app (having android:sharedUserId="android.uid.system" setting). Intent redirection in this app leads to accessing arbitrary not exported activities of absolutely all apps.

CVSS v3 5.0 MEDIUM

5.0^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 2.7

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact LOW

Scope CHANGED

References

Link	Resource
https://lgsecurity.lge.com/bulletins/mobile#updateDetails	Vendor Advisory
https://lgsecurity.lge.com/bulletins/mobile#updateDetails	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

cpe:2.3:h:lg:v60_thin_q_5g:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:25

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~6.3~~	v2 : unknown v3 : 5.0
References	~~() https://lgsecurity.lge.com/bulletins/mobile#updateDetails - Vendor Advisory~~	() https://lgsecurity.lge.com/bulletins/mobile#updateDetails - Vendor Advisory

02 Oct 2023, 18:23

Type	Values Removed	Values Added
References	~~(MISC) https://lgsecurity.lge.com/bulletins/mobile#updateDetails -~~	(MISC) https://lgsecurity.lge.com/bulletins/mobile#updateDetails - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.3
First Time		Google android Lg v60 Thin Q 5g Google Lg
CWE		NVD-CWE-noinfo
CPE		cpe:2.3:h:lg:v60_thin_q_5g:-:::::::* cpe:2.3:o:google:android::::::::

27 Sep 2023, 15:19

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-27 15:19

Updated : 2024-11-21 08:25

NVD link : CVE-2023-44121

Mitre link : CVE-2023-44121

CVE.ORG link : CVE-2023-44121

JSON object : View

Products Affected

lg

v60_thin_q_5g

google

android

CWE

CWE-926

Improper Export of Android Application Components

NVD-CWE-noinfo

{"id": "CVE-2023-44121", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "product.security@lge.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.0, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 2.7, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.3, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 1.8}]}, "published": "2023-09-27T15:19:35.680", "references": [{"url": "https://lgsecurity.lge.com/bulletins/mobile#updateDetails", "tags": ["Vendor Advisory"], "source": "product.security@lge.com"}, {"url": "https://lgsecurity.lge.com/bulletins/mobile#updateDetails", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "product.security@lge.com", "description": [{"lang": "en", "value": "CWE-926"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "The vulnerability is an intent redirection in LG ThinQ Service (\"com.lge.lms2\") in the \"com/lge/lms/things/ui/notification/NotificationManager.java\" file. This vulnerability could be exploited by a third-party app installed on an LG device by sending a broadcast with the action \"com.lge.lms.things.notification.ACTION\". Additionally, this vulnerability is very dangerous because LG ThinQ Service is a system app (having android:sharedUserId=\"android.uid.system\" setting). Intent redirection in this app leads to accessing arbitrary not exported activities of absolutely all apps."}, {"lang": "es", "value": "La vulnerabilidad es una redirecci\u00f3n de intenci\u00f3n en LG ThinQ Service (\"com.lge.lms2\") en el archivo \"com/lge/lms/things/ui/notification/NotificationManager.java\". Esta vulnerabilidad podr\u00eda ser aprovechada por una aplicaci\u00f3n de terceros instalada en un dispositivo LG enviando una transmisi\u00f3n con la acci\u00f3n \"com.lge.lms.things.notification.ACTION\". Adem\u00e1s, esta vulnerabilidad es muy peligrosa porque LG ThinQ Service es una aplicaci\u00f3n del sistema (que tiene la configuraci\u00f3n android:sharedUserId=\"android.uid.system\"). La redirecci\u00f3n de intenciones en esta aplicaci\u00f3n conduce a acceder a actividades arbitrarias no exportadas de absolutamente todas las aplicaciones."}], "lastModified": "2024-11-21T08:25:17.283", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78DA7F57-664C-4188-BA3C-B262B9865BBB", "versionEndIncluding": "13.0", "versionStartIncluding": "9.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:lg:v60_thin_q_5g:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "85B3B7D2-762E-4DD5-90F9-5246907748C4"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "product.security@lge.com"}