CVE-2023-52346

EUVD-2023-57003
In modem driver, there is a possible system crash due to improper input validation. This could lead to local information disclosure with System execution privileges needed
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.4 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
CISA-ADPADP
4.4 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
googleandroid
12.0
googleandroid
13.0
googleandroid
14.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.unisoc.com/en_us/secy/announcementDetail/1777143682512781313
https://www.unisoc.com/en_us/secy/announcementDetail/1777143682512781313