CVE-2022-47353

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-47353
In vdsp device, there is a possible system crash due to improper input validation.This could lead to local denial of service with System execution privileges needed

4.4 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434 Broken Link
https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434 Broken Link
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*
OR cpe:2.3:h:unisoc:s8000:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t760:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t770:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t820:-:*:*:*:*:*:*:*
History

21 Nov 2024, 07:31

Type Values Removed Values Added
References () https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434 - Broken Link () https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434 - Broken Link

08 Sep 2023, 13:52

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 4.4
CPE cpe:2.3:h:unisoc:s8000:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t760:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t770:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t820:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*
cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:-:*:*:*:*:*:*
CWE CWE-20
First Time Unisoc t618
Google android
Unisoc
Unisoc t760
Google
Unisoc t820
Unisoc s8000
Unisoc t610
Unisoc t770
References (MISC) https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434 - (MISC) https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1698296481653522434 - Broken Link

04 Sep 2023, 03:51

Type Values Removed Values Added
New CVE
Information

Published : 2023-09-04 02:15

Updated : 2024-11-21 07:31

NVD link : CVE-2022-47353

Mitre link : CVE-2022-47353

CVE.ORG link : CVE-2022-47353

JSON object : View

Products Affected

unisoc

  • t770
  • t610
  • s8000
  • t760
  • t820
  • t618

google

  • android
CWE
CWE-20

Improper Input Validation