Lucene search
UnisocCVE-2023-42731HistoryDec 04, 2023 - 1:15 a.m.
CVE-2023-42731
2023-12-0401:15:11
CWE-125
Unisoc
web.nvd.nist.gov
16
gnss
service
out of bounds read
local denial of service
nvd
cve-2023-42731
CVSS3
4.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
AI Score
4.7
Confidence
High
EPSS
0
Percentile
5.1%
In Gnss service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
Affected configurations
Node
googleandroidMatch11.0
ORgoogleandroidMatch12.0
ORgoogleandroidMatch13.0
unisoct606Match-
ORunisoct612Match-
ORunisoct616Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| android | 11.0 | cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:* | |
| android | 12.0 | cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* | |
| android | 13.0 | cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* | |
| unisoc | t606 | - | cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:* |
| unisoc | t612 | - | cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:* |
| unisoc | t616 | - | cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "T606/T612/T616",
"versions": [
{
"version": "Android11/Android12/Android13",
"status": "affected"
}
],
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd."
}
]Related
nvd
nvd
CVE-2023-42731
2023-12-04 01:15:11
cvelist
cvelist
CVE-2023-42731
2023-12-04 00:54:18
prion
prion
Out-of-bounds
2023-12-04 01:15:00
CVSS3
4.4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
AI Score
4.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2023-42731