CVE-2023-52535 — Improper Input Validation in Technologies CO LTD Sc7731e Sc9832e Sc9863a T310 T610 T618

CWE-20 — Improper Input Validation2 documents2 sources

Severity

4.4MEDIUMNVD

EPSS

0.0%

top 94.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Unisoc Technologies CO LTD Sc7731e Sc9832e Sc9863a T310 T610 T618 Google Android

Timeline

PublishedApr 8

Description

In vsp driver, there is a possible missing verification incorrect input. This could lead to local denial of service with no additional execution privileges needed

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:LExploitability: 1.8 | Impact: 2.5

Affected Packages2 packages

▶NVDgoogle/android12.0, 13.0+1

▶CVEListV5unisoc_technologies_co_ltd/sc7731e_sc9832e_sc9863a_t310_t610_t618Android12/Android13

🔴Vulnerability Details

GHSA

GHSA-4rjg-8j2c-ccv6: In vsp driver, there is a possible missing verification incorrect input↗2024-04-08

▶