Lucene search

[email protected]NVD:CVE-2023-42721

HistoryDec 04, 2023 - 1:15 a.m.

CVE-2023-42721

2023-12-0401:15:10

[email protected]

web.nvd.nist.gov

flv extractor

missing verification

denial of service

execution privileges

cve

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

In flv extractor, there is a possible missing verification incorrect input. This could lead to local denial of service with no additional execution privileges needed

Affected configurations

Nvd

Node

googleandroidMatch11.0-

AND

unisocsc9863aMatch-

VendorProductVersionCPE
googleandroid11.0cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*
unisocsc9863a-cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	android	11.0	cpe:2.3:o:google:android:11.0:-::::::
unisoc	sc9863a	-	cpe:2.3:h:unisoc:sc9863a:-:::::::*

References

www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-42721

cvelist1 prion1 cve1