Lucene search
+L

4 matches found

NVD
NVD
added 2023/08/08 10:15 a.m.28 views

CVE-2023-28576

The buffer obtained from kernel APIs such as cammemgetcpubuf may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header e.g. header.count, causing checks e.g. size checks in kernel code to be invalid. This may lead to...

7CVSS6.5AI score0.00081EPSS
Exploits0References1
CVE
CVE
added 2023/08/08 9:15 a.m.77 views

CVE-2023-28576

CVE-2023-28576 describes a TOCTOU race in Qualcomm camera kernel driver where a buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after the kernel accesses it. This can allow user-mode modification of packet headers (e.g., header.count) and inval...

7CVSS6.5AI score0.00081EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/08 9:15 a.m.35 views

CVE-2023-28576 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Kernel Driver

The buffer obtained from kernel APIs such as cammemgetcpubuf may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header e.g. header.count, causing checks e.g. size checks in kernel code to be invalid. This may lead to...

6.4CVSS7.1AI score0.00081EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/08 9:15 a.m.20 views

CVE-2023-28576 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Kernel Driver

The buffer obtained from kernel APIs such as cammemgetcpubuf may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header e.g. header.count, causing checks e.g. size checks in kernel code to be invalid. This may lead to...

6.4CVSS7.1AI score0.00081EPSS
Exploits0References1
Rows per page
Query Builder