Vulnerability-Lookup

CVE-2024-39431 (GCVE-0-2024-39431)

Vulnerability from cvelistv5 – Published: 2024-09-27 07:37 – Updated: 2024-09-27 15:42

Summary

In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed.

Severity ?

8.3 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE

cwe-121 Stack-based Buffer Overflow

Assigner

Unisoc

References

URL

Tags

https://www.unisoc.com/en_us/secy/announcementDet…

Impacted products

	Vendor	Product	Version
	Unisoc (Shanghai) Technologies Co., Ltd.	SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000	Affected: Android12/Android13/Android14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:h:unisoc:s8000:*:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t310:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t760:*:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t770:*:*:*:*:*:*:*:*",
              "cpe:2.3:h:unisoc:t820:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "t820",
            "vendor": "unisoc",
            "versions": [
              {
                "status": "affected",
                "version": "android_12"
              },
              {
                "status": "affected",
                "version": "android_13"
              },
              {
                "status": "affected",
                "version": "android_14"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-39431",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-27T15:41:03.864954Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-27T15:42:50.544Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000",
          "vendor": "Unisoc (Shanghai) Technologies Co., Ltd.",
          "versions": [
            {
              "status": "affected",
              "version": "Android12/Android13/Android14"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "cwe-121 Stack-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-27T07:37:40.908Z",
        "orgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
        "shortName": "Unisoc"
      },
      "references": [
        {
          "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "63f92e9c-2193-4c24-98a9-93640392c3d3",
    "assignerShortName": "Unisoc",
    "cveId": "CVE-2024-39431",
    "datePublished": "2024-09-27T07:37:40.908Z",
    "dateReserved": "2024-06-25T06:13:32.358Z",
    "dateUpdated": "2024-09-27T15:42:50.544Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-39431\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-27T15:41:03.864954Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:h:unisoc:s8000:*:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t310:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t760:*:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t770:*:*:*:*:*:*:*:*\", \"cpe:2.3:h:unisoc:t820:*:*:*:*:*:*:*:*\"], \"vendor\": \"unisoc\", \"product\": \"t820\", \"versions\": [{\"status\": \"affected\", \"version\": \"android_12\"}, {\"status\": \"affected\", \"version\": \"android_13\"}, {\"status\": \"affected\", \"version\": \"android_14\"}], \"defaultStatus\": \"unaffected\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-27T15:42:44.880Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 8.3, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Unisoc (Shanghai) Technologies Co., Ltd.\", \"product\": \"SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000\", \"versions\": [{\"status\": \"affected\", \"version\": \"Android12/Android13/Android14\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"cwe-121 Stack-based Buffer Overflow\"}]}], \"providerMetadata\": {\"orgId\": \"63f92e9c-2193-4c24-98a9-93640392c3d3\", \"shortName\": \"Unisoc\", \"dateUpdated\": \"2024-09-27T07:37:40.908Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-39431\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-09-27T15:42:50.544Z\", \"dateReserved\": \"2024-06-25T06:13:32.358Z\", \"assignerOrgId\": \"63f92e9c-2193-4c24-98a9-93640392c3d3\", \"datePublished\": \"2024-09-27T07:37:40.908Z\", \"assignerShortName\": \"Unisoc\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-JV5J-9QXG-RRH2

Vulnerability from github – Published: 2024-09-27 09:30 – Updated: 2024-09-27 09:30

Details

In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed.

Severity ?

8.3 (High)


                  
                    CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-39431"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-09-27T08:15:02Z",
    "severity": "HIGH"
  },
  "details": "In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed.",
  "id": "GHSA-jv5j-9qxg-rrh2",
  "modified": "2024-09-27T09:30:30Z",
  "published": "2024-09-27T09:30:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39431"
    },
    {
      "type": "WEB",
      "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CVE-2024-39431

Vulnerability from fstec - Published: 27.09.2024

Title

Уязвимость драйвера UMTS RLC микропрограммного обеспечения чипсетов Unisoc, связанная с записью за границами буфера, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость драйвера UMTS RLC микропрограммного обеспечения чипсетов Unisoc связана с записью за границами буфера. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании

Severity ?


                    
                      AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Vendor

Unisoc (Shanghai) Technologies Co., Ltd

Software Name

SC9863A, SC9832E, SC7731E, T610, T310, T606, T760, T618, T612, T616, T770, T820, S8000

Software Version

- (SC9863A), - (SC9832E), - (SC7731E), - (T610), - (T310), - (T606), - (T760), - (T618), - (T612), - (T616), - (T770), - (T820), - (S8000)

Possible Mitigations

Использование рекомендаций производителя: https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241

Reference

https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241

CWE

CWE-121, CWE-787

JSON

To clipboard

{
  "CVSS 2.0": "AV:A/AC:H/Au:N/C:C/I:C/A:C",
  "CVSS 3.0": "AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Unisoc (Shanghai) Technologies Co., Ltd",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (SC9863A), - (SC9832E), - (SC7731E), - (T610), - (T310), - (T606), - (T760), - (T618), - (T612), - (T616), - (T770), - (T820), - (S8000)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "27.09.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "16.12.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "13.12.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-11095",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-39431",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "SC9863A, SC9832E, SC7731E, T610, T310, T606, T760, T618, T612, T616, T770, T820, S8000",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Google Inc Android 12 , Google Inc Android 13 , Google Inc Android 14 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 UMTS RLC \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0447\u0438\u043f\u0441\u0435\u0442\u043e\u0432 Unisoc, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u0437\u0430\u043f\u0438\u0441\u044c\u044e \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u0432 \u0441\u0442\u0435\u043a\u0435 (CWE-121), \u0417\u0430\u043f\u0438\u0441\u044c \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430 (CWE-787)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 UMTS RLC \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0447\u0438\u043f\u0441\u0435\u0442\u043e\u0432 Unisoc \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0437\u0430\u043f\u0438\u0441\u044c\u044e \u0437\u0430 \u0433\u0440\u0430\u043d\u0438\u0446\u0430\u043c\u0438 \u0431\u0443\u0444\u0435\u0440\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-121, CWE-787",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,3)"
}

FKIE_CVE-2024-39431

Vulnerability from fkie_nvd - Published: 2024-09-27 08:15 - Updated: 2024-09-30 18:09

Severity ?

8.3 (High) - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
4.5 (Medium) - CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Summary

In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed.

References

	URL	Tags
	security@unisoc.com	https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241	Vendor Advisory

Impacted products

Vendor	Product	Version
google	android	12.0
google	android	13.0
google	android	14.0
unisoc	s8000	-
unisoc	sc7731e	-
unisoc	sc9832e	-
unisoc	sc9863a	-
unisoc	t310	-
unisoc	t606	-
unisoc	t610	-
unisoc	t612	-
unisoc	t616	-
unisoc	t618	-
unisoc	t760	-
unisoc	t770	-
unisoc	t820	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8FB8EE9-FC56-4D5E-AE55-A5967634740C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:unisoc:s8000:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FDE05D06-C798-4217-8858-8C5DC2C94751",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC867249-B767-4802-868D-6D0E356C8294",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "25BBD3C5-E87C-4730-970C-19DF855AC3A2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE00DFDE-97DD-4D33-B580-73FEF677C71B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t310:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F20E00D8-2F00-4FA3-9455-37DC89908D96",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "905E39DD-7948-40A4-B042-EBB9A9591347",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDC980D6-B797-4AE1-B553-35395AE80D07",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t612:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "98408A48-561A-49D1-967F-834311742B7F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t616:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "756E5850-CDC7-46C2-BAFC-1E2A359A2709",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t618:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "39002ECE-636A-4FEB-9A0B-8127E8AAC844",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t760:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3D965CCA-C963-49E4-ACF0-2A9F458AF470",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t770:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0FFEF06A-E3E0-486F-89CC-D52FF3F26F0B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:unisoc:t820:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "49601008-D3FF-47CC-B961-6FDDFC7A0596",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In UMTS RLC driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed."
    },
    {
      "lang": "es",
      "value": "En el controlador RLC de UMTS, existe la posibilidad de una escritura fuera de los l\u00edmites debido a la falta de una comprobaci\u00f3n de los l\u00edmites. Esto podr\u00eda provocar una denegaci\u00f3n de servicio remota con privilegios de ejecuci\u00f3n de System necesarios."
    }
  ],
  "id": "CVE-2024-39431",
  "lastModified": "2024-09-30T18:09:30.780",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.3,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.6,
        "impactScore": 6.0,
        "source": "security@unisoc.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 4.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-09-27T08:15:02.513",
  "references": [
    {
      "source": "security@unisoc.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.unisoc.com/en_us/secy/announcementDetail/1830802995705610241"
    }
  ],
  "sourceIdentifier": "security@unisoc.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2024-AVI-0733

Vulnerability from certfr_avis - Published: 2024-09-04 - Updated: 2024-09-05

De multiples vulnérabilités ont été découvertes dans les produits Google. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données. Google indique que la vulnérabilité CVE-2024-32896 est activement exploitée dans le cadre d'attaques ciblées.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	Google	Pixel	Pixel toutes versions avant le correctif du 3 septembre 2024
	Google	Android	Android toutes versions avant le correctif du 3 septembre 2024

References

Title

Publication Time

Tags

Bulletin de sécurité Google Android	2024-09-03	vendor-advisory
Bulletin de sécurité Pixel	2024-09-03	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Pixel toutes versions avant le correctif du 3 septembre 2024",
      "product": {
        "name": "Pixel",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    },
    {
      "description": "Android toutes versions avant le correctif du 3 septembre 2024",
      "product": {
        "name": "Android",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-33060",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33060"
    },
    {
      "name": "CVE-2024-33034",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33034"
    },
    {
      "name": "CVE-2024-33038",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33038"
    },
    {
      "name": "CVE-2024-23365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23365"
    },
    {
      "name": "CVE-2024-40650",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40650"
    },
    {
      "name": "CVE-2024-44094",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-44094"
    },
    {
      "name": "CVE-2024-36972",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36972"
    },
    {
      "name": "CVE-2024-23358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23358"
    },
    {
      "name": "CVE-2024-39432",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-39432"
    },
    {
      "name": "CVE-2024-40657",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40657"
    },
    {
      "name": "CVE-2024-29779",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-29779"
    },
    {
      "name": "CVE-2024-33042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33042"
    },
    {
      "name": "CVE-2024-40658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40658"
    },
    {
      "name": "CVE-2024-40655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40655"
    },
    {
      "name": "CVE-2024-40654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40654"
    },
    {
      "name": "CVE-2024-33035",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33035"
    },
    {
      "name": "CVE-2024-23359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23359"
    },
    {
      "name": "CVE-2024-40652",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40652"
    },
    {
      "name": "CVE-2024-32896",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32896"
    },
    {
      "name": "CVE-2024-31336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-31336"
    },
    {
      "name": "CVE-2024-23362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23362"
    },
    {
      "name": "CVE-2024-33043",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33043"
    },
    {
      "name": "CVE-2024-33048",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33048"
    },
    {
      "name": "CVE-2024-44093",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-44093"
    },
    {
      "name": "CVE-2024-44092",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-44092"
    },
    {
      "name": "CVE-2024-33016",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33016"
    },
    {
      "name": "CVE-2024-33052",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33052"
    },
    {
      "name": "CVE-2024-33045",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33045"
    },
    {
      "name": "CVE-2024-44095",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-44095"
    },
    {
      "name": "CVE-2024-23364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23364"
    },
    {
      "name": "CVE-2024-40656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40656"
    },
    {
      "name": "CVE-2024-44096",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-44096"
    },
    {
      "name": "CVE-2024-33050",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33050"
    },
    {
      "name": "CVE-2024-39431",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-39431"
    },
    {
      "name": "CVE-2024-33057",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33057"
    },
    {
      "name": "CVE-2024-33054",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33054"
    },
    {
      "name": "CVE-2024-23716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23716"
    },
    {
      "name": "CVE-2024-40662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40662"
    },
    {
      "name": "CVE-2024-40659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40659"
    },
    {
      "name": "CVE-2024-3655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-3655"
    },
    {
      "name": "CVE-2024-33051",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33051"
    }
  ],
  "initial_release_date": "2024-09-04T00:00:00",
  "last_revision_date": "2024-09-05T00:00:00",
  "links": [],
  "reference": "CERTFR-2024-AVI-0733",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-09-04T00:00:00.000000"
    },
    {
      "description": "Ajout d\u0027information sur l\u0027exploitabilit\u00e9",
      "revision_date": "2024-09-05T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Google. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es. Google indique que la vuln\u00e9rabilit\u00e9 CVE-2024-32896 est activement exploit\u00e9e dans le cadre d\u0027attaques cibl\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Google",
  "vendor_advisories": [
    {
      "published_at": "2024-09-03",
      "title": "Bulletin de s\u00e9curit\u00e9 Google Android",
      "url": "https://source.android.com/docs/security/bulletin/2024-09-01?hl=fr"
    },
    {
      "published_at": "2024-09-03",
      "title": "Bulletin de s\u00e9curit\u00e9 Pixel",
      "url": "https://source.android.com/docs/security/bulletin/pixel/2024-09-01?hl=fr"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-39431 (GCVE-0-2024-39431)

GHSA-JV5J-9QXG-RRH2

CVE-2024-39431

FKIE_CVE-2024-39431

CERTFR-2024-AVI-0733

Solutions

Tags

Sightings

Nomenclature