Lucene search

K
cve[email protected]CVE-2023-42729
HistoryDec 04, 2023 - 1:15 a.m.

CVE-2023-42729

2023-12-0401:15:11
CWE-787
web.nvd.nist.gov
7
cve
42729
ril service
bounds check
denial of service
nvd
security vulnerability

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

4.8

Confidence

High

EPSS

0

Percentile

5.1%

In ril service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

Affected configurations

NVD
Node
googleandroidMatch12.0
OR
googleandroidMatch13.0
AND
unisocs8000Match-
OR
unisocsc7731eMatch-
OR
unisocsc9832eMatch-
OR
unisocsc9863aMatch-
OR
unisoct310Match-
OR
unisoct606Match-
OR
unisoct610Match-
OR
unisoct612Match-
OR
unisoct616Match-
OR
unisoct618Match-
OR
unisoct760Match-
OR
unisoct770Match-
OR
unisoct820Match-

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000",
    "versions": [
      {
        "version": "Android12/Android13",
        "status": "affected"
      }
    ],
    "vendor": "Unisoc (Shanghai) Technologies Co., Ltd."
  }
]

CVSS3

4.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

AI Score

4.8

Confidence

High

EPSS

0

Percentile

5.1%

Related for CVE-2023-42729