CVE-2022-48439

In cp_dump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
OR cpe:2.3:h:unisoc:s8000:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t310:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t760:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t770:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t820:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:33

Type Values Removed Values Added
References () https://www.unisoc.com/en_us/secy/announcementDetail/1664822361414762498 - Vendor Advisory () https://www.unisoc.com/en_us/secy/announcementDetail/1664822361414762498 - Vendor Advisory

09 Jun 2023, 23:46

Type Values Removed Values Added
First Time Unisoc t310
Unisoc t820
Unisoc t612
Unisoc t618
Unisoc sc7731e
Google
Unisoc
Unisoc t760
Unisoc t616
Google android
Unisoc sc9832e
Unisoc t606
Unisoc s8000
Unisoc t610
Unisoc t770
Unisoc sc9863a
References (MISC) https://www.unisoc.com/en_us/secy/announcementDetail/1664822361414762498 - (MISC) https://www.unisoc.com/en_us/secy/announcementDetail/1664822361414762498 - Vendor Advisory
CPE cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t310:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t820:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t760:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t770:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:s8000:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.4
CWE CWE-787

06 Jun 2023, 06:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-06-06 06:15

Updated : 2024-11-21 07:33


NVD link : CVE-2022-48439

Mitre link : CVE-2022-48439

CVE.ORG link : CVE-2022-48439


JSON object : View

Products Affected

unisoc

  • t820
  • t310
  • t610
  • t616
  • t760
  • t618
  • sc9832e
  • s8000
  • t770
  • t612
  • sc7731e
  • sc9863a
  • t606

google

  • android
CWE
CWE-787

Out-of-bounds Write