All the vulnerabilites related to Unisoc (Shanghai) Technologies Co., Ltd. - SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618
cve-2023-38444
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-11 16:38
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.557Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38444",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T16:32:21.996804Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T16:38:37.275Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:04.144Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38444",
"datePublished": "2023-09-04T01:16:04.144Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-11T16:38:37.275Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38461
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-01 20:47
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.621Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38461",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-01T20:47:04.073051Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-01T20:47:19.978Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:08.997Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38461",
"datePublished": "2023-09-04T01:16:08.997Z",
"dateReserved": "2023-07-18T07:24:19.588Z",
"dateUpdated": "2024-10-01T20:47:19.978Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38438
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:43
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.624Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38438",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:43:19.912958Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:43:35.807Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:02.381Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38438",
"datePublished": "2023-09-04T01:16:02.381Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-02T14:43:35.807Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38460
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 18:03
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android10/Android9/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.646Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unaffected",
"product": "android",
"vendor": "google",
"versions": [
{
"status": "affected",
"version": "11.0"
},
{
"status": "affected",
"version": "10.0"
},
{
"status": "affected",
"version": "9.0"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-38460",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-01T19:53:02.342177Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-862",
"description": "CWE-862 Missing Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T18:03:06.947Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android10/Android9/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:08.728Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38460",
"datePublished": "2023-09-04T01:16:08.728Z",
"dateReserved": "2023-07-18T07:24:19.588Z",
"dateUpdated": "2024-10-02T18:03:06.947Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38437
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:45
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android11/Android10/Android9 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.622Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38437",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:45:28.123632Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:45:31.612Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android11/Android10/Android9"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:02.104Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38437",
"datePublished": "2023-09-04T01:16:02.104Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-02T14:45:31.612Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38436
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:46
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.624Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38436",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:46:10.222010Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:46:21.163Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:01.826Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38436",
"datePublished": "2023-09-04T01:16:01.826Z",
"dateReserved": "2023-07-18T07:24:19.584Z",
"dateUpdated": "2024-10-02T14:46:21.163Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38457
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:19
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.528Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38457",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:19:05.964417Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:19:17.841Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:07.884Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38457",
"datePublished": "2023-09-04T01:16:07.884Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-02T14:19:17.841Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38454
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:36
Severity ?
EPSS score ?
Summary
In vowifi service, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.553Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38454",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:36:01.661053Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:36:14.978Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifi service, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:07.068Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38454",
"datePublished": "2023-09-04T01:16:07.068Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-02T14:36:14.978Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38452
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-11 16:12
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.632Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38452",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T15:53:59.305762Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T16:12:37.429Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:06.450Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38452",
"datePublished": "2023-09-04T01:16:06.450Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-11T16:12:37.429Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38449
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-11 16:31
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.535Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38449",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T16:25:27.520717Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T16:31:28.738Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:05.502Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38449",
"datePublished": "2023-09-04T01:16:05.502Z",
"dateReserved": "2023-07-18T07:24:19.586Z",
"dateUpdated": "2024-10-11T16:31:28.738Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38458
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-03 13:29
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.628Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38458",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-03T13:23:33.341635Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-03T13:29:39.540Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:08.169Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38458",
"datePublished": "2023-09-04T01:16:08.169Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-03T13:29:39.540Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-33917
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-10 15:43
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T15:54:13.656Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-33917",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-10T15:43:24.028466Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-10T15:43:35.588Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:01.230Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-33917",
"datePublished": "2023-09-04T01:16:01.230Z",
"dateReserved": "2023-05-23T06:51:01.538Z",
"dateUpdated": "2024-10-10T15:43:35.588Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38464
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 17:59
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.615Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unaffected",
"product": "android",
"vendor": "google",
"versions": [
{
"status": "affected",
"version": "11.0"
},
{
"status": "affected",
"version": "10.0"
},
{
"status": "affected",
"version": "9.0"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-38464",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T17:49:37.156410Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-862",
"description": "CWE-862 Missing Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T17:59:23.677Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:09.835Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38464",
"datePublished": "2023-09-04T01:16:09.835Z",
"dateReserved": "2023-07-18T07:24:19.588Z",
"dateUpdated": "2024-10-02T17:59:23.677Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38441
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:40
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.623Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38441",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:40:33.920721Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:40:46.057Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:03.270Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38441",
"datePublished": "2023-09-04T01:16:03.270Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-02T14:40:46.057Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38443
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-11 16:46
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.559Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "andriod9_android10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38443",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T16:40:06.882707Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T16:46:15.394Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:03.873Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38443",
"datePublished": "2023-09-04T01:16:03.873Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-11T16:46:15.394Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38451
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-11 16:19
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.622Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38451",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T16:13:49.278837Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T16:19:02.270Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:06.158Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38451",
"datePublished": "2023-09-04T01:16:06.158Z",
"dateReserved": "2023-07-18T07:24:19.586Z",
"dateUpdated": "2024-10-11T16:19:02.270Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38446
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-10 14:08
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.466Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38446",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-10T14:08:28.099454Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-10T14:08:38.416Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:04.688Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38446",
"datePublished": "2023-09-04T01:16:04.688Z",
"dateReserved": "2023-07-18T07:24:19.586Z",
"dateUpdated": "2024-10-10T14:08:38.416Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38453
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-11 15:52
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.621Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38453",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-11T15:44:55.007584Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-11T15:52:01.459Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:06.759Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38453",
"datePublished": "2023-09-04T01:16:06.759Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-11T15:52:01.459Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38455
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-08-02 17:39
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.571Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:07.334Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38455",
"datePublished": "2023-09-04T01:16:07.334Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-08-02T17:39:13.571Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38463
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:16
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.707Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38463",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:15:54.647013Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:16:08.826Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:09.557Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38463",
"datePublished": "2023-09-04T01:16:09.557Z",
"dateReserved": "2023-07-18T07:24:19.588Z",
"dateUpdated": "2024-10-02T14:16:08.826Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38459
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-03 13:22
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.629Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_andriod10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38459",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-03T13:15:42.519218Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-03T13:22:21.513Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:08.448Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38459",
"datePublished": "2023-09-04T01:16:08.448Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-03T13:22:21.513Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-33916
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:50
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android10/Android9/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T15:54:13.428Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-33916",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:49:50.341924Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:50:09.527Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android10/Android9/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:00.948Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-33916",
"datePublished": "2023-09-04T01:16:00.948Z",
"dateReserved": "2023-05-23T06:51:01.537Z",
"dateUpdated": "2024-10-02T14:50:09.527Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-33911
Vulnerability from cvelistv5
Published
2023-08-07 01:54
Modified
2024-10-17 14:46
Severity ?
EPSS score ?
Summary
In vowifi service, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T15:54:13.397Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1687281677639942145"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-33911",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-17T14:45:34.617602Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-17T14:46:03.989Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifi service, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-08-07T01:54:44.992Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1687281677639942145"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-33911",
"datePublished": "2023-08-07T01:54:44.992Z",
"dateReserved": "2023-05-23T06:51:01.536Z",
"dateUpdated": "2024-10-17T14:46:03.989Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38448
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:38
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.553Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38448",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:38:22.946027Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:38:36.019Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:05.233Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38448",
"datePublished": "2023-09-04T01:16:05.233Z",
"dateReserved": "2023-07-18T07:24:19.586Z",
"dateUpdated": "2024-10-02T14:38:36.019Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38462
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:17
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android10/Android9/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.607Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38462",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:17:15.460498Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:17:27.766Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android10/Android9/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:09.279Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38462",
"datePublished": "2023-09-04T01:16:09.279Z",
"dateReserved": "2023-07-18T07:24:19.588Z",
"dateUpdated": "2024-10-02T14:17:27.766Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38456
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:34
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.617Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc7731e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9832e",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "sc9863a",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t606",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t612",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t616",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t610",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
},
{
"cpes": [
"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "t618",
"vendor": "unisoc",
"versions": [
{
"status": "affected",
"version": "android9_android_10_android11"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38456",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:20:47.101460Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:34:19.692Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:07.608Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38456",
"datePublished": "2023-09-04T01:16:07.608Z",
"dateReserved": "2023-07-18T07:24:19.587Z",
"dateUpdated": "2024-10-02T14:34:19.692Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38447
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-10 14:08
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.579Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38447",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-10T14:07:56.563398Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-10T14:08:07.799Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:04.962Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38447",
"datePublished": "2023-09-04T01:16:04.962Z",
"dateReserved": "2023-07-18T07:24:19.586Z",
"dateUpdated": "2024-10-10T14:08:07.799Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-33918
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:48
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T15:54:13.464Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-33918",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:48:28.653159Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:48:46.172Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:01.516Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-33918",
"datePublished": "2023-09-04T01:16:01.516Z",
"dateReserved": "2023-05-23T06:51:01.538Z",
"dateUpdated": "2024-10-02T14:48:46.172Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38442
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:44
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.567Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38442",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:39:46.256154Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:44:34.698Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:03.572Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38442",
"datePublished": "2023-09-04T01:16:03.572Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-02T14:44:34.698Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38440
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-02 14:41
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android10/Android11/Android9 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.620Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38440",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-02T14:41:29.494921Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-02T14:41:42.799Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android10/Android11/Android9"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:02.966Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38440",
"datePublished": "2023-09-04T01:16:02.966Z",
"dateReserved": "2023-07-18T07:24:19.585Z",
"dateUpdated": "2024-10-02T14:41:42.799Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2023-38445
Vulnerability from cvelistv5
Published
2023-09-04 01:16
Modified
2024-10-10 15:42
Severity ?
EPSS score ?
Summary
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Unisoc (Shanghai) Technologies Co., Ltd. | SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618 |
Version: Android9/Android10/Android11 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T17:39:13.626Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-38445",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-10T15:42:21.632226Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-10T15:42:46.885Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "SC7731E/SC9832E/SC9863A/T606/T612/T616/T610/T618",
"vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "Android9/Android10/Android11"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges"
}
],
"providerMetadata": {
"dateUpdated": "2023-09-04T01:16:04.417Z",
"orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"shortName": "Unisoc"
},
"references": [
{
"url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
"assignerShortName": "Unisoc",
"cveId": "CVE-2023-38445",
"datePublished": "2023-09-04T01:16:04.417Z",
"dateReserved": "2023-07-18T07:24:19.586Z",
"dateUpdated": "2024-10-10T15:42:46.885Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}