CVE-2022-47353 — Improper Input Validation in Technologies CO LTD T610 T618 T760 T770 T820 S8000

CWE-20 — Improper Input Validation2 documents2 sources

Severity

4.4MEDIUMNVD

EPSS

0.0%

top 99.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Unisoc Technologies CO LTD T610 T618 T760 T770 T820 S8000 Google Android

Timeline

PublishedSep 4

Description

In vdsp device, there is a possible system crash due to improper input validation.This could lead to local denial of service with System execution privileges needed

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 0.8 | Impact: 3.6

Affected Packages2 packages

▶NVDgoogle/android11.0

▶CVEListV5unisoc_technologies_co_ltd/t610_t618_t760_t770_t820_s8000Android11

🔴Vulnerability Details

GHSA

GHSA-hv3q-475v-5rr9: In vdsp device, there is a possible system crash due to improper input validation↗2023-09-04

▶