CVE-2023-42712

2023-12-0400:54:13

Unisoc

github.com

firewall service

permission check

information disclosure

AI Score

6.4

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed

References

www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049