Latest vulnerabilities of Sunday, October 8, 2023

Latest vulnerabilities of Sunday, October 8, 2023
https://www.securitricks.com/content/images/size/w600/format/webp/2023/12/VULNERABILITIES-REPORTS-LOGO.png
{{titre}}

Last update performed on 10/08/2023 at 11:58:02 PM

(0) CRITICAL VULNERABILITIES [9.0, 10.0]

(0) HIGH VULNERABILITIES [7.0, 8.9]

(0) MEDIUM VULNERABILITIES [4.0, 6.9]

(0) LOW VULNERABILITIES [0.1, 3.9]

(24) NO SCORE VULNERABILITIES [0.0, 0.0]

Source : unisoc.com

Vulnerability ID : CVE-2023-40631

First published on : 08-10-2023 04:15:55
Last modified on : 08-10-2023 17:50:12

Description :
In Dialer, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed

CVE ID : CVE-2023-40631
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40632

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In jpg driver, there is a possible use after free due to a logic error. This could lead to remote information disclosure no additional execution privileges needed

CVE ID : CVE-2023-40632
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40633

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In phasecheckserver, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40633
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40634

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In phasechecksercer, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE ID : CVE-2023-40634
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40635

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In linkturbo, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE ID : CVE-2023-40635
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40636

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with System execution privileges needed

CVE ID : CVE-2023-40636
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40637

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges

CVE ID : CVE-2023-40637
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40638

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In Telecom service, there is a possible missing permission check. This could lead to local denial of service with System execution privileges needed

CVE ID : CVE-2023-40638
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40639

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges

CVE ID : CVE-2023-40639
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40640

First published on : 08-10-2023 04:15:56
Last modified on : 08-10-2023 17:50:12

Description :
In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges

CVE ID : CVE-2023-40640
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40641

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40641
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40642

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40642
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40643

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40643
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40644

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40644
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40645

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40645
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40646

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40646
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40647

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40647
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40648

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40648
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40649

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40649
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40650

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In Telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CVE ID : CVE-2023-40650
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40651

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In urild service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

CVE ID : CVE-2023-40651
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40652

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In jpg driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed

CVE ID : CVE-2023-40652
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40653

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

CVE ID : CVE-2023-40653
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


Vulnerability ID : CVE-2023-40654

First published on : 08-10-2023 04:15:57
Last modified on : 08-10-2023 17:50:12

Description :
In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

CVE ID : CVE-2023-40654
Source : security@unisoc.com
CVSS Score : /

References :
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074 | source : security@unisoc.com


This website uses the NVD API, but is not approved or certified by it.

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! Youโ€™ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.