CVE-2023-21171 — In verifyInputEvent of InputDispatcher.cpp, there is a possible way to conduct click fraud due to side channel information disclosure. This could lead to local escalation of privilege with System exec — CVE Database · The Intelligence Room