Lucene search

K
nvd[email protected]NVD:CVE-2023-42743
HistoryDec 04, 2023 - 1:15 a.m.

CVE-2023-42743

2023-12-0401:15:11
CWE-862
web.nvd.nist.gov
telecom service
missing permission check
local escalation
privilege
cve-2023-42743

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

Affected configurations

NVD
Node
googleandroidMatch11.0-
OR
googleandroidMatch12.0-
OR
googleandroidMatch13.0-
AND
unisocs8000Match-
OR
unisocsc7731eMatch-
OR
unisocsc9832eMatch-
OR
unisocsc9863aMatch-
OR
unisoct310Match-
OR
unisoct606Match-
OR
unisoct610Match-
OR
unisoct612Match-
OR
unisoct616Match-
OR
unisoct618Match-
OR
unisoct760Match-
OR
unisoct770Match-
OR
unisoct820Match-

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

Related for NVD:CVE-2023-42743