First published: Mon Dec 04 2023(Updated: )
In camera service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed
Credit: security@unisoc.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Any of | ||
Google Android | =11.0 | |
Google Android | =12.0 | |
Google Android | =13.0 | |
Any of | ||
Unisoc S8000 | ||
Unisoc Sc7731e | ||
Unisoc Sc9832e | ||
Unisoc Sc9863a | ||
Unisoc T310 | ||
Unisoc T606 | ||
Unisoc T610 | ||
Unisoc T612 | ||
Unisoc T616 | ||
Unisoc T618 | ||
Unisoc T760 | ||
Unisoc T770 | ||
Unisoc T820 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-42747 is a vulnerability in the camera service that allows for local escalation of privilege.
Google Android versions 11.0, 12.0, and 13.0 are affected by CVE-2023-42747.
CVE-2023-42747 has a severity rating of 7.8 (high).
To fix CVE-2023-42747, apply the security patch provided by the vendor or update to a non-vulnerable version of the software.
You can find more information about CVE-2023-42747 at the following link: [link](https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049)