Search

Find a vulnerability

Search criteria

    654 vulnerabilities found for SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000 by Unisoc (Shanghai) Technologies Co., Ltd.

    CVE-2023-33905 (GCVE-0-2023-33905)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-11-27 15:46
    VLAI
    Summary
    In iwnpi server, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.675Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 4.4,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33905",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-11-27T15:44:06.649896Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-27T15:46:23.585Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In iwnpi server, there is a possible out of bounds write due to a missing bounds check.  This could lead to local denial of service with System execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:43.939Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33905",
        "datePublished": "2023-07-12T08:32:43.939Z",
        "dateReserved": "2023-05-23T06:51:01.536Z",
        "dateUpdated": "2024-11-27T15:46:23.585Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33904 (GCVE-0-2023-33904)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 16:43
    VLAI
    Summary
    In hci_server, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.407Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33904",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T16:43:25.872227Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T16:43:34.295Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In hci_server, there is a possible out of bounds read due to a missing bounds check.  This could lead to local denial of service with System execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:42.431Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33904",
        "datePublished": "2023-07-12T08:32:42.431Z",
        "dateReserved": "2023-05-23T06:51:01.535Z",
        "dateUpdated": "2024-12-04T16:43:34.295Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33902 (GCVE-0-2023-33902)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-08-02 15:54
    VLAI
    Summary
    In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.384Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:38.316Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33902",
        "datePublished": "2023-07-12T08:32:38.316Z",
        "dateReserved": "2023-05-23T06:51:01.535Z",
        "dateUpdated": "2024-08-02T15:54:13.384Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33901 (GCVE-0-2023-33901)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-08-02 15:54
    VLAI
    Summary
    In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.684Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:36.431Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33901",
        "datePublished": "2023-07-12T08:32:36.431Z",
        "dateReserved": "2023-05-23T06:51:01.535Z",
        "dateUpdated": "2024-08-02T15:54:13.684Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33900 (GCVE-0-2023-33900)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 15:09
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.786Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33900",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:09:37.813312Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:09:55.159Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:03.423Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33900",
        "datePublished": "2023-07-12T08:32:03.423Z",
        "dateReserved": "2023-05-23T06:51:01.535Z",
        "dateUpdated": "2024-12-04T15:09:55.159Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33899 (GCVE-0-2023-33899)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-03 17:10
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.295Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33899",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:10:14.923471Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:10:33.489Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:59.323Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33899",
        "datePublished": "2023-07-12T08:31:59.323Z",
        "dateReserved": "2023-05-23T06:51:01.535Z",
        "dateUpdated": "2024-12-03T17:10:33.489Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33898 (GCVE-0-2023-33898)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-03 17:12
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.424Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33898",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:11:52.131529Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:12:11.525Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:58.025Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33898",
        "datePublished": "2023-07-12T08:31:58.025Z",
        "dateReserved": "2023-05-23T06:38:35.981Z",
        "dateUpdated": "2024-12-03T17:12:11.525Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33891 (GCVE-0-2023-33891)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 16:41
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.735Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33891",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T16:40:42.812295Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T16:41:10.078Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:26.028Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33891",
        "datePublished": "2023-07-12T08:32:26.028Z",
        "dateReserved": "2023-05-23T06:38:35.980Z",
        "dateUpdated": "2024-12-04T16:41:10.078Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33890 (GCVE-0-2023-33890)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 15:04
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.386Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33890",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:04:36.294485Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:04:55.648Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:25.104Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33890",
        "datePublished": "2023-07-12T08:32:25.104Z",
        "dateReserved": "2023-05-23T06:38:35.980Z",
        "dateUpdated": "2024-12-04T15:04:55.648Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33889 (GCVE-0-2023-33889)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 15:06
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.635Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33889",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:06:12.963068Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:06:36.442Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:23.808Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33889",
        "datePublished": "2023-07-12T08:32:23.808Z",
        "dateReserved": "2023-05-23T06:38:35.980Z",
        "dateUpdated": "2024-12-04T15:06:36.442Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33888 (GCVE-0-2023-33888)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 15:07
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.466Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33888",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:07:11.219785Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:07:28.528Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:21.174Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33888",
        "datePublished": "2023-07-12T08:32:21.174Z",
        "dateReserved": "2023-05-23T06:38:35.980Z",
        "dateUpdated": "2024-12-04T15:07:28.528Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33887 (GCVE-0-2023-33887)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 16:57
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.355Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33887",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T16:57:16.232828Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T16:57:37.608Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:20.228Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33887",
        "datePublished": "2023-07-12T08:32:20.228Z",
        "dateReserved": "2023-05-23T06:38:35.980Z",
        "dateUpdated": "2024-12-03T16:57:37.608Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33886 (GCVE-0-2023-33886)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:00
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.418Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33886",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T16:59:39.539926Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:00:48.486Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:18.987Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33886",
        "datePublished": "2023-07-12T08:32:18.987Z",
        "dateReserved": "2023-05-23T06:38:35.980Z",
        "dateUpdated": "2024-12-03T17:00:48.486Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33885 (GCVE-0-2023-33885)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:01
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.274Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33885",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:01:31.309810Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:01:47.913Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:18.044Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33885",
        "datePublished": "2023-07-12T08:32:18.044Z",
        "dateReserved": "2023-05-23T06:38:35.979Z",
        "dateUpdated": "2024-12-03T17:01:47.913Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33884 (GCVE-0-2023-33884)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:02
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.781Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33884",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:02:31.003147Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:02:44.108Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:16.759Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33884",
        "datePublished": "2023-07-12T08:32:16.759Z",
        "dateReserved": "2023-05-23T06:38:35.979Z",
        "dateUpdated": "2024-12-03T17:02:44.108Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33883 (GCVE-0-2023-33883)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:03
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.430Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33883",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:03:13.216540Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:03:25.848Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:13.352Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33883",
        "datePublished": "2023-07-12T08:32:13.352Z",
        "dateReserved": "2023-05-23T06:38:35.979Z",
        "dateUpdated": "2024-12-03T17:03:25.848Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33882 (GCVE-0-2023-33882)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:04
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.428Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33882",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:03:56.783852Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:04:07.624Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:12.419Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33882",
        "datePublished": "2023-07-12T08:32:12.419Z",
        "dateReserved": "2023-05-23T06:38:35.978Z",
        "dateUpdated": "2024-12-03T17:04:07.624Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33881 (GCVE-0-2023-33881)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:05
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.430Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33881",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:05:10.778538Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:05:24.466Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:10.428Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33881",
        "datePublished": "2023-07-12T08:32:10.428Z",
        "dateReserved": "2023-05-23T06:38:35.978Z",
        "dateUpdated": "2024-12-03T17:05:24.466Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33880 (GCVE-0-2023-33880)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:06
    VLAI
    Summary
    In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.355Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33880",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:05:55.441253Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:06:11.254Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:09.446Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33880",
        "datePublished": "2023-07-12T08:32:09.446Z",
        "dateReserved": "2023-05-23T06:38:35.978Z",
        "dateUpdated": "2024-12-03T17:06:11.254Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-33879 (GCVE-0-2023-33879)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:07
    VLAI
    Summary
    In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:54:13.380Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-33879",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:06:43.583864Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:07:53.475Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:07.737Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-33879",
        "datePublished": "2023-07-12T08:32:07.737Z",
        "dateReserved": "2023-05-23T06:38:35.977Z",
        "dateUpdated": "2024-12-03T17:07:53.475Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32789 (GCVE-0-2023-32789)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-03 17:08
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:36.987Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32789",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-03T17:08:32.031662Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-03T17:08:48.285Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:06.757Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-32789",
        "datePublished": "2023-07-12T08:32:06.757Z",
        "dateReserved": "2023-05-15T07:37:43.536Z",
        "dateUpdated": "2024-12-03T17:08:48.285Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32788 (GCVE-0-2023-32788)

    Vulnerability from nvd – Published: 2023-07-12 08:32 – Updated: 2024-12-04 15:08
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:36.999Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32788",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:08:15.929488Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:08:32.377Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:32:04.753Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-32788",
        "datePublished": "2023-07-12T08:32:04.753Z",
        "dateReserved": "2023-05-15T06:02:25.373Z",
        "dateUpdated": "2024-12-04T15:08:32.377Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30942 (GCVE-0-2023-30942)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:10
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.513Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30942",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:10:29.016067Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:10:42.785Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:54.592Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30942",
        "datePublished": "2023-07-12T08:31:54.592Z",
        "dateReserved": "2023-04-21T08:42:30.249Z",
        "dateUpdated": "2024-12-04T15:10:42.785Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30941 (GCVE-0-2023-30941)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:11
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.574Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30941",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:11:20.208962Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:11:47.855Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:49.432Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30941",
        "datePublished": "2023-07-12T08:31:49.432Z",
        "dateReserved": "2023-04-21T08:42:30.249Z",
        "dateUpdated": "2024-12-04T15:11:47.855Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30940 (GCVE-0-2023-30940)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:12
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.522Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30940",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:12:14.886926Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:12:35.940Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:47.448Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30940",
        "datePublished": "2023-07-12T08:31:47.448Z",
        "dateReserved": "2023-04-21T08:42:30.249Z",
        "dateUpdated": "2024-12-04T15:12:35.940Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30939 (GCVE-0-2023-30939)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:13
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.575Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30939",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:13:03.917668Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:13:20.544Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:46.518Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30939",
        "datePublished": "2023-07-12T08:31:46.518Z",
        "dateReserved": "2023-04-21T08:42:30.248Z",
        "dateUpdated": "2024-12-04T15:13:20.544Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30938 (GCVE-0-2023-30938)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:14
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.510Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30938",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:14:06.493687Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:14:28.935Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:45.322Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30938",
        "datePublished": "2023-07-12T08:31:45.322Z",
        "dateReserved": "2023-04-21T08:42:30.248Z",
        "dateUpdated": "2024-12-04T15:14:28.935Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30937 (GCVE-0-2023-30937)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:15
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.507Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30937",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:15:36.794814Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:15:55.559Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:44.421Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30937",
        "datePublished": "2023-07-12T08:31:44.421Z",
        "dateReserved": "2023-04-21T08:42:30.248Z",
        "dateUpdated": "2024-12-04T15:15:55.559Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30936 (GCVE-0-2023-30936)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:17
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.510Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30936",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:16:44.953893Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:17:31.212Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:42.549Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30936",
        "datePublished": "2023-07-12T08:31:42.549Z",
        "dateReserved": "2023-04-21T08:42:30.248Z",
        "dateUpdated": "2024-12-04T15:17:31.212Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-30935 (GCVE-0-2023-30935)

    Vulnerability from nvd – Published: 2023-07-12 08:31 – Updated: 2024-12-04 15:18
    VLAI
    Summary
    In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T14:37:15.500Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-30935",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-04T15:18:07.477617Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-04T15:18:18.906Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000",
              "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android10/Android11/Android12/Android13"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed."
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-07-12T08:31:40.534Z",
            "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
            "shortName": "Unisoc"
          },
          "references": [
            {
              "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1676902764208259073"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "assignerShortName": "Unisoc",
        "cveId": "CVE-2023-30935",
        "datePublished": "2023-07-12T08:31:40.534Z",
        "dateReserved": "2023-04-21T08:42:30.248Z",
        "dateUpdated": "2024-12-04T15:18:18.906Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }