CVE-2023-33914

EPSS 0.05%
Veröffentlicht 04.09.2023 02:15:08
Zuletzt bearbeitet 21.11.2024 08:06:11
Quelle security@unisoc.com
CVE-Watchlists
Login
Unerledigt
Login

In NIA0 algorithm in Security Mode Command, there is a possible missing verification incorrect input. This could lead to remote information disclosure no additional execution privileges needed

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Google ≫ Android Version11.0 Update-

   Unisoc ≫ S8000 Version-
   Unisoc ≫ T760 Version-
   Unisoc ≫ T770 Version-
   Unisoc ≫ T820 Version-

Google ≫ Android Version12.0 Update-

   Unisoc ≫ S8000 Version-
   Unisoc ≫ T760 Version-
   Unisoc ≫ T770 Version-
   Unisoc ≫ T820 Version-

Google ≫ Android Version13.0 Update-

   Unisoc ≫ S8000 Version-
   Unisoc ≫ T760 Version-
   Unisoc ≫ T770 Version-
   Unisoc ≫ T820 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.169

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434

Broken Link

https://nvd.nist.gov/vuln/detail/CVE-2023-33914

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-33914

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-33914

EUVD