First published: Mon Dec 04 2023(Updated: )
In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed
Credit: security@unisoc.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Any of | ||
Google Android | =11.0 | |
Google Android | =12.0 | |
Google Android | =13.0 | |
Any of | ||
unisoc s8000 | ||
Unisoc SC7731 | ||
unisoc sc9832e | ||
unisoc sc9863a | ||
unisoc t310 | ||
unisoc t606 | ||
unisoc t610 | ||
unisoc t612 | ||
unisoc t616 | ||
unisoc t618 | ||
unisoc t760 | ||
unisoc t770 | ||
unisoc t820 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-42696 is a vulnerability in the telecom service that allows for a possible missing permission check, leading to local escalation of privilege without needing additional execution privileges.
CVE-2023-42696 affects Google Android versions 11.0, 12.0, and 13.0.
CVE-2023-42696 has a severity rating of 7.8 (high).
To fix CVE-2023-42696, it is recommended to apply the latest security patch provided by the software vendor.
You can find more information about CVE-2023-42696 at the following reference: [link](https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049)