CVE-2023-30866
First published: Tue Jun 06 2023(Updated: )
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
Credit: security@unisoc.com security@unisoc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | =10.0 | |
| Unisoc S8000 | ||
| Unisoc Sc7731e | ||
| Unisoc Sc9832e | ||
| Unisoc Sc9863a | ||
| Unisoc T310 | ||
| Unisoc T606 | ||
| Unisoc T610 | ||
| Unisoc T612 | ||
| Unisoc T616 | ||
| Unisoc T618 | ||
| Unisoc T760 | ||
| Unisoc T770 | ||
| Unisoc T820 | ||
| All of | ||
| Google Android | =10.0 | |
| Any of | ||
| Unisoc S8000 | ||
| Unisoc Sc7731e | ||
| Unisoc Sc9832e | ||
| Unisoc Sc9863a | ||
| Unisoc T310 | ||
| Unisoc T606 | ||
| Unisoc T610 | ||
| Unisoc T612 | ||
| Unisoc T616 | ||
| Unisoc T618 | ||
| Unisoc T760 | ||
| Unisoc T770 | ||
| Unisoc T820 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-30866?
The severity of CVE-2023-30866 is medium with a severity score of 5.5.
What is the vulnerability description of CVE-2023-30866?
CVE-2023-30866 is a vulnerability in telephony service where there is a missing permission check, which could lead to local information disclosure without additional execution privileges needed.
What software is affected by CVE-2023-30866?
The affected software by CVE-2023-30866 is Google Android 10.0.
How can this vulnerability be exploited?
This vulnerability can be exploited by an attacker who has local access to the telephony service to disclose sensitive information without needing additional privileges.
Is there a fix for CVE-2023-30866?
A fix for CVE-2023-30866 may be available through software updates and patches provided by the software vendor or developer. It is recommended to update to the latest version of the software that addresses this vulnerability.
- agent/type
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/first-publish-date
- agent/event
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/google
- canonical/google android
- version/google android/10.0
- vendor/unisoc
- canonical/unisoc s8000
- canonical/unisoc sc7731e
- canonical/unisoc sc9832e
- canonical/unisoc sc9863a
- canonical/unisoc t310
- canonical/unisoc t606
- canonical/unisoc t610
- canonical/unisoc t612
- canonical/unisoc t616
- canonical/unisoc t618
- canonical/unisoc t760
- canonical/unisoc t770
- canonical/unisoc t820