Vulnerability Description
In Gnss service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
CVSS Score
4.4
MEDIUM
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | 11.0 | |
| Unisoc | T606 | - |
| Unisoc | T612 | - |
| Unisoc | T616 | - |
Related Weaknesses (CWE)
References
- https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_uBroken Link
- https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_uBroken Link
FAQ
What is CVE-2023-42731?
CVE-2023-42731 is a vulnerability with a CVSS score of 4.4 (MEDIUM). In Gnss service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
How severe is CVE-2023-42731?
CVE-2023-42731 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-42731?
Check the references section above for vendor advisories and patch information. Affected products include: Google Android, Unisoc T606, Unisoc T612, Unisoc T616.