NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2023-48359

Summary	In autotest driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed
Publication Date	Jan. 18, 2024, 12:15 p.m.
Registration Date	Jan. 18, 2024, 4 p.m.
Last Update	Nov. 21, 2024, 5:31 p.m.

CVSS3.1 : MEDIUM
スコア	4.4
Vector	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	高
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	高

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:o:google:android:11.0:::::::*
cpe:2.3:o:google:android:12.0:::::::*
cpe:2.3:o:google:android:13.0:::::::*
execution environment
1	cpe:2.3:h:unisoc:s8000:-:::::::*
2	cpe:2.3:h:unisoc:sc7731e:-:::::::*
3	cpe:2.3:h:unisoc:sc9832e:-:::::::*
4	cpe:2.3:h:unisoc:sc9863a:-:::::::*
5	cpe:2.3:h:unisoc:t310:-:::::::*
6	cpe:2.3:h:unisoc:t606:-:::::::*
7	cpe:2.3:h:unisoc:t610:-:::::::*
8	cpe:2.3:h:unisoc:t612:-:::::::*
9	cpe:2.3:h:unisoc:t616:-:::::::*
10	cpe:2.3:h:unisoc:t618:-:::::::*
11	cpe:2.3:h:unisoc:t760:-:::::::*
12	cpe:2.3:h:unisoc:t770:-:::::::*
13	cpe:2.3:h:unisoc:t820:-:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.unisoc.com/en_us/secy/announcementDetail/1745735200442220545		Vendor Advisory
2	https://www.unisoc.com/en_us/secy/announcementDetail/1745735200442220545		Vendor Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-787	境界外書き込み	https://cwe.mitre.org/data/definitions/787.html