From 2a46a8ae4dfe66b0cdf6b07103f5c63c89244ef0 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Mon, 4 Dec 2023 01:00:35 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2022/48xxx/CVE-2022-48462.json | 53 ++++++++++++++++++++-- 2022/48xxx/CVE-2022-48463.json | 53 ++++++++++++++++++++-- 2022/48xxx/CVE-2022-48464.json | 53 ++++++++++++++++++++-- 2023/38xxx/CVE-2023-38003.json | 82 +++++++++++++++++++++++++++++++-- 2023/42xxx/CVE-2023-42671.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42672.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42673.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42674.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42675.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42676.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42677.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42678.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42679.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42680.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42681.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42682.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42683.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42684.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42685.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42686.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42687.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42688.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42689.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42690.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42691.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42692.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42693.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42694.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42695.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42696.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42697.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42698.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42699.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42700.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42701.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42702.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42703.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42704.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42705.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42706.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42707.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42708.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42709.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42710.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42711.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42712.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42713.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42714.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42715.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42716.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42717.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42718.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42719.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42720.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42721.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42722.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42723.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42724.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42725.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42726.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42727.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42728.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42729.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42730.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42731.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42732.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42733.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42734.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42735.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42736.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42737.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42738.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42739.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42740.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42741.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42742.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42743.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42744.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42745.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42746.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42747.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42748.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42749.json | 53 ++++++++++++++++++++-- 2023/42xxx/CVE-2023-42751.json | 53 ++++++++++++++++++++-- 2023/46xxx/CVE-2023-46167.json | 83 ++++++++++++++++++++++++++++++++-- 2023/47xxx/CVE-2023-47701.json | 83 ++++++++++++++++++++++++++++++++-- 2023/49xxx/CVE-2023-49963.json | 18 ++++++++ 87 files changed, 4321 insertions(+), 344 deletions(-) create mode 100644 2023/49xxx/CVE-2023-49963.json diff --git a/2022/48xxx/CVE-2022-48462.json b/2022/48xxx/CVE-2022-48462.json index ca3e5cd13cc..fecdcf2577d 100644 --- a/2022/48xxx/CVE-2022-48462.json +++ b/2022/48xxx/CVE-2022-48462.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2022-48462", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2022/48xxx/CVE-2022-48463.json b/2022/48xxx/CVE-2022-48463.json index 7320bbf4f8b..740d9e9f619 100644 --- a/2022/48xxx/CVE-2022-48463.json +++ b/2022/48xxx/CVE-2022-48463.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2022-48463", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2022/48xxx/CVE-2022-48464.json b/2022/48xxx/CVE-2022-48464.json index 2af1011c132..68023ca8a47 100644 --- a/2022/48xxx/CVE-2022-48464.json +++ b/2022/48xxx/CVE-2022-48464.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2022-48464", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/38xxx/CVE-2023-38003.json b/2023/38xxx/CVE-2023-38003.json index e315c4f99f3..098a33e51a2 100644 --- a/2023/38xxx/CVE-2023-38003.json +++ b/2023/38xxx/CVE-2023-38003.json @@ -1,17 +1,91 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-38003", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "psirt@us.ibm.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow a user with DATAACCESS privileges to execute routines that they should not have access to. IBM X-Force ID: 260214." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "264 Permissions, Privileges, Access Controls" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "product_name": "Db2 for Linux, UNIX and Windows", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "10.5, 11.1 ,11.5" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.ibm.com/support/pages/node/7078681", + "refsource": "MISC", + "name": "https://www.ibm.com/support/pages/node/7078681" + }, + { + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/260214", + "refsource": "MISC", + "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/260214" + } + ] + }, + "generator": { + "engine": "Vulnogram 0.1.0-dev" + }, + "source": { + "discovery": "UNKNOWN" + }, + "impact": { + "cvss": [ + { + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "HIGH", + "baseScore": 7.2, + "baseSeverity": "HIGH", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "privilegesRequired": "HIGH", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "version": "3.1" } ] } diff --git a/2023/42xxx/CVE-2023-42671.json b/2023/42xxx/CVE-2023-42671.json index c343ec06c49..90963a48e82 100644 --- a/2023/42xxx/CVE-2023-42671.json +++ b/2023/42xxx/CVE-2023-42671.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42671", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42672.json b/2023/42xxx/CVE-2023-42672.json index c3a551ed6b4..0b85803ad73 100644 --- a/2023/42xxx/CVE-2023-42672.json +++ b/2023/42xxx/CVE-2023-42672.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42672", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42673.json b/2023/42xxx/CVE-2023-42673.json index 9bcb64a0d74..2b718317f12 100644 --- a/2023/42xxx/CVE-2023-42673.json +++ b/2023/42xxx/CVE-2023-42673.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42673", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42674.json b/2023/42xxx/CVE-2023-42674.json index a4578e438c4..ad8d541fa71 100644 --- a/2023/42xxx/CVE-2023-42674.json +++ b/2023/42xxx/CVE-2023-42674.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42674", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42675.json b/2023/42xxx/CVE-2023-42675.json index a49d4f7ddcf..92f98cce611 100644 --- a/2023/42xxx/CVE-2023-42675.json +++ b/2023/42xxx/CVE-2023-42675.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42675", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42676.json b/2023/42xxx/CVE-2023-42676.json index cd3d4969869..4315d16acc0 100644 --- a/2023/42xxx/CVE-2023-42676.json +++ b/2023/42xxx/CVE-2023-42676.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42676", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42677.json b/2023/42xxx/CVE-2023-42677.json index f99a0e545e9..3b8dbcf6be9 100644 --- a/2023/42xxx/CVE-2023-42677.json +++ b/2023/42xxx/CVE-2023-42677.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42677", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42678.json b/2023/42xxx/CVE-2023-42678.json index 060f18c6405..3c88dc99906 100644 --- a/2023/42xxx/CVE-2023-42678.json +++ b/2023/42xxx/CVE-2023-42678.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42678", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42679.json b/2023/42xxx/CVE-2023-42679.json index 8ed54c29ab9..3cf420c86d3 100644 --- a/2023/42xxx/CVE-2023-42679.json +++ b/2023/42xxx/CVE-2023-42679.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42679", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42680.json b/2023/42xxx/CVE-2023-42680.json index a6df8607f89..67167f1e6e0 100644 --- a/2023/42xxx/CVE-2023-42680.json +++ b/2023/42xxx/CVE-2023-42680.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42680", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gpu driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42681.json b/2023/42xxx/CVE-2023-42681.json index b124813275b..d687d4b7390 100644 --- a/2023/42xxx/CVE-2023-42681.json +++ b/2023/42xxx/CVE-2023-42681.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42681", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In ion service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42682.json b/2023/42xxx/CVE-2023-42682.json index 88d7ecdcbc8..c36ae5d446a 100644 --- a/2023/42xxx/CVE-2023-42682.json +++ b/2023/42xxx/CVE-2023-42682.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42682", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gsp driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42683.json b/2023/42xxx/CVE-2023-42683.json index e8bfb6432cc..c3f1dac15c3 100644 --- a/2023/42xxx/CVE-2023-42683.json +++ b/2023/42xxx/CVE-2023-42683.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42683", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gsp driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42684.json b/2023/42xxx/CVE-2023-42684.json index 71dccb0e533..2b446cbadd7 100644 --- a/2023/42xxx/CVE-2023-42684.json +++ b/2023/42xxx/CVE-2023-42684.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42684", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gsp driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42685.json b/2023/42xxx/CVE-2023-42685.json index d569ed8e139..144217b0964 100644 --- a/2023/42xxx/CVE-2023-42685.json +++ b/2023/42xxx/CVE-2023-42685.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42685", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42686.json b/2023/42xxx/CVE-2023-42686.json index dcf48dc7d3f..35b6aacbe38 100644 --- a/2023/42xxx/CVE-2023-42686.json +++ b/2023/42xxx/CVE-2023-42686.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42686", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42687.json b/2023/42xxx/CVE-2023-42687.json index c38d5477c87..87bc360d207 100644 --- a/2023/42xxx/CVE-2023-42687.json +++ b/2023/42xxx/CVE-2023-42687.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42687", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42688.json b/2023/42xxx/CVE-2023-42688.json index ba699d9df3c..92ac00048ed 100644 --- a/2023/42xxx/CVE-2023-42688.json +++ b/2023/42xxx/CVE-2023-42688.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42688", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42689.json b/2023/42xxx/CVE-2023-42689.json index 872e9ff8378..239c0785244 100644 --- a/2023/42xxx/CVE-2023-42689.json +++ b/2023/42xxx/CVE-2023-42689.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42689", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42690.json b/2023/42xxx/CVE-2023-42690.json index e682842132b..057a9a287d8 100644 --- a/2023/42xxx/CVE-2023-42690.json +++ b/2023/42xxx/CVE-2023-42690.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42690", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42691.json b/2023/42xxx/CVE-2023-42691.json index f4cfd66a392..62292627dde 100644 --- a/2023/42xxx/CVE-2023-42691.json +++ b/2023/42xxx/CVE-2023-42691.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42691", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42692.json b/2023/42xxx/CVE-2023-42692.json index 33c1d80c38c..a33ee775ba7 100644 --- a/2023/42xxx/CVE-2023-42692.json +++ b/2023/42xxx/CVE-2023-42692.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42692", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42693.json b/2023/42xxx/CVE-2023-42693.json index b00cc533e65..0dfe5d307eb 100644 --- a/2023/42xxx/CVE-2023-42693.json +++ b/2023/42xxx/CVE-2023-42693.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42693", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42694.json b/2023/42xxx/CVE-2023-42694.json index ff90086030c..9d4583d86dd 100644 --- a/2023/42xxx/CVE-2023-42694.json +++ b/2023/42xxx/CVE-2023-42694.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42694", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42695.json b/2023/42xxx/CVE-2023-42695.json index b034ece6b03..8ab180ece82 100644 --- a/2023/42xxx/CVE-2023-42695.json +++ b/2023/42xxx/CVE-2023-42695.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42695", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42696.json b/2023/42xxx/CVE-2023-42696.json index 2cabd598824..66243c1797f 100644 --- a/2023/42xxx/CVE-2023-42696.json +++ b/2023/42xxx/CVE-2023-42696.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42696", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42697.json b/2023/42xxx/CVE-2023-42697.json index d2d827ef6bb..69713b6af0a 100644 --- a/2023/42xxx/CVE-2023-42697.json +++ b/2023/42xxx/CVE-2023-42697.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42697", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In omacp service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42698.json b/2023/42xxx/CVE-2023-42698.json index d004ec98820..60a45219f3e 100644 --- a/2023/42xxx/CVE-2023-42698.json +++ b/2023/42xxx/CVE-2023-42698.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42698", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In omacp service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42699.json b/2023/42xxx/CVE-2023-42699.json index 602adb5e03d..76c0d9a4315 100644 --- a/2023/42xxx/CVE-2023-42699.json +++ b/2023/42xxx/CVE-2023-42699.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42699", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In omacp service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42700.json b/2023/42xxx/CVE-2023-42700.json index e771d8cbe06..f01173a8455 100644 --- a/2023/42xxx/CVE-2023-42700.json +++ b/2023/42xxx/CVE-2023-42700.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42700", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42701.json b/2023/42xxx/CVE-2023-42701.json index 724b532a815..a49e5f56962 100644 --- a/2023/42xxx/CVE-2023-42701.json +++ b/2023/42xxx/CVE-2023-42701.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42701", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42702.json b/2023/42xxx/CVE-2023-42702.json index 5aa6429785d..5013b9b3556 100644 --- a/2023/42xxx/CVE-2023-42702.json +++ b/2023/42xxx/CVE-2023-42702.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42702", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42703.json b/2023/42xxx/CVE-2023-42703.json index bd27be6afe3..11e9f69bc3f 100644 --- a/2023/42xxx/CVE-2023-42703.json +++ b/2023/42xxx/CVE-2023-42703.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42703", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42704.json b/2023/42xxx/CVE-2023-42704.json index d57802fff04..78ddc126f8b 100644 --- a/2023/42xxx/CVE-2023-42704.json +++ b/2023/42xxx/CVE-2023-42704.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42704", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42705.json b/2023/42xxx/CVE-2023-42705.json index 43b18059e41..6f418f645a2 100644 --- a/2023/42xxx/CVE-2023-42705.json +++ b/2023/42xxx/CVE-2023-42705.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42705", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42706.json b/2023/42xxx/CVE-2023-42706.json index 575134c7ee2..c20812fac7e 100644 --- a/2023/42xxx/CVE-2023-42706.json +++ b/2023/42xxx/CVE-2023-42706.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42706", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42707.json b/2023/42xxx/CVE-2023-42707.json index 75b0b19c034..bb9a470fa20 100644 --- a/2023/42xxx/CVE-2023-42707.json +++ b/2023/42xxx/CVE-2023-42707.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42707", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42708.json b/2023/42xxx/CVE-2023-42708.json index 70960cc7bfc..d8b41bc5bfc 100644 --- a/2023/42xxx/CVE-2023-42708.json +++ b/2023/42xxx/CVE-2023-42708.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42708", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42709.json b/2023/42xxx/CVE-2023-42709.json index 34a7add5b3e..f887d470359 100644 --- a/2023/42xxx/CVE-2023-42709.json +++ b/2023/42xxx/CVE-2023-42709.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42709", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42710.json b/2023/42xxx/CVE-2023-42710.json index 02c876f1c42..b7ed1195c31 100644 --- a/2023/42xxx/CVE-2023-42710.json +++ b/2023/42xxx/CVE-2023-42710.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42710", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42711.json b/2023/42xxx/CVE-2023-42711.json index 41a847071a0..61c2564087e 100644 --- a/2023/42xxx/CVE-2023-42711.json +++ b/2023/42xxx/CVE-2023-42711.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42711", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42712.json b/2023/42xxx/CVE-2023-42712.json index 3994c00f94a..001ce3547bf 100644 --- a/2023/42xxx/CVE-2023-42712.json +++ b/2023/42xxx/CVE-2023-42712.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42712", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42713.json b/2023/42xxx/CVE-2023-42713.json index 7e25b344df9..eb238aca8a9 100644 --- a/2023/42xxx/CVE-2023-42713.json +++ b/2023/42xxx/CVE-2023-42713.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42713", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42714.json b/2023/42xxx/CVE-2023-42714.json index e2736746ca4..81cc7409253 100644 --- a/2023/42xxx/CVE-2023-42714.json +++ b/2023/42xxx/CVE-2023-42714.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42714", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42715.json b/2023/42xxx/CVE-2023-42715.json index fab6ab7c9d0..721fc8acd96 100644 --- a/2023/42xxx/CVE-2023-42715.json +++ b/2023/42xxx/CVE-2023-42715.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42715", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42716.json b/2023/42xxx/CVE-2023-42716.json index 4c8bc2166aa..8cd122f9bf5 100644 --- a/2023/42xxx/CVE-2023-42716.json +++ b/2023/42xxx/CVE-2023-42716.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42716", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42717.json b/2023/42xxx/CVE-2023-42717.json index 1428f3182fa..7bd9ef47260 100644 --- a/2023/42xxx/CVE-2023-42717.json +++ b/2023/42xxx/CVE-2023-42717.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42717", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42718.json b/2023/42xxx/CVE-2023-42718.json index 53b97925af5..8b1fc7f54d8 100644 --- a/2023/42xxx/CVE-2023-42718.json +++ b/2023/42xxx/CVE-2023-42718.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42718", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In dialer, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42719.json b/2023/42xxx/CVE-2023-42719.json index 2d34040eb69..64d43a9feaf 100644 --- a/2023/42xxx/CVE-2023-42719.json +++ b/2023/42xxx/CVE-2023-42719.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42719", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In video service, there is a possible out of bounds read due to a incorrect bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "T606/T612/T616", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42720.json b/2023/42xxx/CVE-2023-42720.json index 7fb6b38ef61..989cc134c6d 100644 --- a/2023/42xxx/CVE-2023-42720.json +++ b/2023/42xxx/CVE-2023-42720.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42720", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In video service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42721.json b/2023/42xxx/CVE-2023-42721.json index a7f79653e80..eafb15a802c 100644 --- a/2023/42xxx/CVE-2023-42721.json +++ b/2023/42xxx/CVE-2023-42721.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42721", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In flv extractor, there is a possible missing verification incorrect input. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42722.json b/2023/42xxx/CVE-2023-42722.json index cee2c201f15..9ea7f77c68f 100644 --- a/2023/42xxx/CVE-2023-42722.json +++ b/2023/42xxx/CVE-2023-42722.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42722", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In camera service, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42723.json b/2023/42xxx/CVE-2023-42723.json index 826ea85f7ab..28a8af5d9cb 100644 --- a/2023/42xxx/CVE-2023-42723.json +++ b/2023/42xxx/CVE-2023-42723.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42723", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In camera service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42724.json b/2023/42xxx/CVE-2023-42724.json index 9a66fad9b33..803fb21e251 100644 --- a/2023/42xxx/CVE-2023-42724.json +++ b/2023/42xxx/CVE-2023-42724.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42724", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gpu driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42725.json b/2023/42xxx/CVE-2023-42725.json index 2660ae0ebeb..c8ec5d3f0ca 100644 --- a/2023/42xxx/CVE-2023-42725.json +++ b/2023/42xxx/CVE-2023-42725.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42725", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gpu driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42726.json b/2023/42xxx/CVE-2023-42726.json index 54cff151a34..47b273e2180 100644 --- a/2023/42xxx/CVE-2023-42726.json +++ b/2023/42xxx/CVE-2023-42726.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42726", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In TeleService, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42727.json b/2023/42xxx/CVE-2023-42727.json index b2e4f3ac66e..c5051a580d2 100644 --- a/2023/42xxx/CVE-2023-42727.json +++ b/2023/42xxx/CVE-2023-42727.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42727", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gpu driver, there is a possible out of bounds write due to a incorrect bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android13/Android12/Android11" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42728.json b/2023/42xxx/CVE-2023-42728.json index 39fa5b6b6a3..388a17d4c15 100644 --- a/2023/42xxx/CVE-2023-42728.json +++ b/2023/42xxx/CVE-2023-42728.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42728", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In phasecheckserver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42729.json b/2023/42xxx/CVE-2023-42729.json index d844ac58b46..f21c2b45e1e 100644 --- a/2023/42xxx/CVE-2023-42729.json +++ b/2023/42xxx/CVE-2023-42729.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42729", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In ril service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42730.json b/2023/42xxx/CVE-2023-42730.json index a6f64ff8841..a8365541305 100644 --- a/2023/42xxx/CVE-2023-42730.json +++ b/2023/42xxx/CVE-2023-42730.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42730", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In IMS service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42731.json b/2023/42xxx/CVE-2023-42731.json index b6987c7b738..61a767291bf 100644 --- a/2023/42xxx/CVE-2023-42731.json +++ b/2023/42xxx/CVE-2023-42731.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42731", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In Gnss service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "T606/T612/T616", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42732.json b/2023/42xxx/CVE-2023-42732.json index 03a1015f7a0..fdad7d02e73 100644 --- a/2023/42xxx/CVE-2023-42732.json +++ b/2023/42xxx/CVE-2023-42732.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42732", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42733.json b/2023/42xxx/CVE-2023-42733.json index 6637d023d94..b3f62af05b6 100644 --- a/2023/42xxx/CVE-2023-42733.json +++ b/2023/42xxx/CVE-2023-42733.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42733", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42734.json b/2023/42xxx/CVE-2023-42734.json index b64c578693f..fdb2c288417 100644 --- a/2023/42xxx/CVE-2023-42734.json +++ b/2023/42xxx/CVE-2023-42734.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42734", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android13/Android12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42735.json b/2023/42xxx/CVE-2023-42735.json index cf58b96b514..3470a29138e 100644 --- a/2023/42xxx/CVE-2023-42735.json +++ b/2023/42xxx/CVE-2023-42735.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42735", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telephony service, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42736.json b/2023/42xxx/CVE-2023-42736.json index 664d1ea3a12..76a12667249 100644 --- a/2023/42xxx/CVE-2023-42736.json +++ b/2023/42xxx/CVE-2023-42736.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42736", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42737.json b/2023/42xxx/CVE-2023-42737.json index 239c905037a..c2f1b099ec1 100644 --- a/2023/42xxx/CVE-2023-42737.json +++ b/2023/42xxx/CVE-2023-42737.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42737", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42738.json b/2023/42xxx/CVE-2023-42738.json index b1340472da6..91f5ce5cd27 100644 --- a/2023/42xxx/CVE-2023-42738.json +++ b/2023/42xxx/CVE-2023-42738.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42738", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telocom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42739.json b/2023/42xxx/CVE-2023-42739.json index d401c7ab214..fb0c10c5596 100644 --- a/2023/42xxx/CVE-2023-42739.json +++ b/2023/42xxx/CVE-2023-42739.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42739", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In engineermode service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42740.json b/2023/42xxx/CVE-2023-42740.json index 4e299199f75..5d92fe105f3 100644 --- a/2023/42xxx/CVE-2023-42740.json +++ b/2023/42xxx/CVE-2023-42740.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42740", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42741.json b/2023/42xxx/CVE-2023-42741.json index e572c62b8ff..3d4d779257a 100644 --- a/2023/42xxx/CVE-2023-42741.json +++ b/2023/42xxx/CVE-2023-42741.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42741", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42742.json b/2023/42xxx/CVE-2023-42742.json index 727a1a1c47e..ce35972db00 100644 --- a/2023/42xxx/CVE-2023-42742.json +++ b/2023/42xxx/CVE-2023-42742.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42742", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In sysui, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42743.json b/2023/42xxx/CVE-2023-42743.json index cb5ac5f7694..e1d7549463f 100644 --- a/2023/42xxx/CVE-2023-42743.json +++ b/2023/42xxx/CVE-2023-42743.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42743", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42744.json b/2023/42xxx/CVE-2023-42744.json index 7b3cd220837..6401bdc61a1 100644 --- a/2023/42xxx/CVE-2023-42744.json +++ b/2023/42xxx/CVE-2023-42744.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42744", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42745.json b/2023/42xxx/CVE-2023-42745.json index a302038fec3..06de2332415 100644 --- a/2023/42xxx/CVE-2023-42745.json +++ b/2023/42xxx/CVE-2023-42745.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42745", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42746.json b/2023/42xxx/CVE-2023-42746.json index 7715cd8df97..c7d3bedfba5 100644 --- a/2023/42xxx/CVE-2023-42746.json +++ b/2023/42xxx/CVE-2023-42746.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42746", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In power manager, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42747.json b/2023/42xxx/CVE-2023-42747.json index efaf1d52a40..ac16a3fd808 100644 --- a/2023/42xxx/CVE-2023-42747.json +++ b/2023/42xxx/CVE-2023-42747.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42747", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In camera service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42748.json b/2023/42xxx/CVE-2023-42748.json index e093ca56f64..b8f8fa7e78e 100644 --- a/2023/42xxx/CVE-2023-42748.json +++ b/2023/42xxx/CVE-2023-42748.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42748", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42749.json b/2023/42xxx/CVE-2023-42749.json index 75ff39e2d33..a4945e64cdf 100644 --- a/2023/42xxx/CVE-2023-42749.json +++ b/2023/42xxx/CVE-2023-42749.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42749", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In enginnermode service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/42xxx/CVE-2023-42751.json b/2023/42xxx/CVE-2023-42751.json index a36a4a93df5..2d99ec23ab3 100644 --- a/2023/42xxx/CVE-2023-42751.json +++ b/2023/42xxx/CVE-2023-42751.json @@ -1,17 +1,62 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-42751", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@unisoc.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In gnss service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unisoc (Shanghai) Technologies Co., Ltd.", + "product": { + "product_data": [ + { + "product_name": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "Android11/Android12/Android13" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049", + "refsource": "MISC", + "name": "https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049" } ] } diff --git a/2023/46xxx/CVE-2023-46167.json b/2023/46xxx/CVE-2023-46167.json index 73f1c2d2122..891f2345f49 100644 --- a/2023/46xxx/CVE-2023-46167.json +++ b/2023/46xxx/CVE-2023-46167.json @@ -1,17 +1,92 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-46167", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "psirt@us.ibm.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 federated server is vulnerable to a denial of service when a specially crafted cursor is used. IBM X-Force ID: 269367." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-20 Improper Input Validation", + "cweId": "CWE-20" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "product_name": "Db2 for Linux, UNIX and Windows", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "11.5" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.ibm.com/support/pages/node/7087203", + "refsource": "MISC", + "name": "https://www.ibm.com/support/pages/node/7087203" + }, + { + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/269367", + "refsource": "MISC", + "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/269367" + } + ] + }, + "generator": { + "engine": "Vulnogram 0.1.0-dev" + }, + "source": { + "discovery": "UNKNOWN" + }, + "impact": { + "cvss": [ + { + "attackComplexity": "HIGH", + "attackVector": "NETWORK", + "availabilityImpact": "HIGH", + "baseScore": 5.9, + "baseSeverity": "MEDIUM", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" } ] } diff --git a/2023/47xxx/CVE-2023-47701.json b/2023/47xxx/CVE-2023-47701.json index 9019e501d13..dae4b6006ca 100644 --- a/2023/47xxx/CVE-2023-47701.json +++ b/2023/47xxx/CVE-2023-47701.json @@ -1,17 +1,92 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-47701", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "psirt@us.ibm.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: 266166." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-20 Improper Input Validation", + "cweId": "CWE-20" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "product_name": "Db2 for Linux, UNIX and Windows", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "10.5, 11.1, 11.5" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.ibm.com/support/pages/node/7087180", + "refsource": "MISC", + "name": "https://www.ibm.com/support/pages/node/7087180" + }, + { + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/266166", + "refsource": "MISC", + "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/266166" + } + ] + }, + "generator": { + "engine": "Vulnogram 0.1.0-dev" + }, + "source": { + "discovery": "UNKNOWN" + }, + "impact": { + "cvss": [ + { + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "HIGH", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "privilegesRequired": "LOW", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" } ] } diff --git a/2023/49xxx/CVE-2023-49963.json b/2023/49xxx/CVE-2023-49963.json new file mode 100644 index 00000000000..bb6169f0aa6 --- /dev/null +++ b/2023/49xxx/CVE-2023-49963.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2023-49963", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file