CVE-2023-42711: In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to...

0.0 CVSS

Description

In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed

Classification

CVE ID: CVE-2023-42711

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Affected Products

Vendor: Unisoc (Shanghai) Technologies Co., Ltd.

Product: SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 5.06% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049

Timeline

2024-12-03 00:11:33 UTC
CVE

In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to...