CVE-2023-33892

2023-07-1208:32:28

Unisoc

www.cve.org

fastdial

missing permission check

local info disclosure

AI Score

5.5

Confidence

High

EPSS

Percentile

5.1%

JSON

In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CNA Affected

[
  {
    "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
    "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8001",
    "versions": [
      {
        "status": "affected",
        "version": "Android10/Android11/Android12/Android13"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073