exploitDog

CVE-2013-3051

Опубликовано: 13 апр. 2013

Источник: nvd

CVSS2: 6.2

EPSS Низкий

Описание

The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local users to unlock the bootloader by using kernel mode to perform crafted 0x9 and 0x2 SMC operations, a different vulnerability than CVE-2013-2596.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:h:qualcomm:msm8960:-:*:*:*:*:*:*:*

cpe:2.3:o:motorola:android:4.1.2:*:*:*:*:*:*:*

Одно из

cpe:2.3:h:motorola:atrix_hd:-:*:*:*:*:*:*:*

cpe:2.3:h:motorola:razr_hd:-:*:*:*:*:*:*:*

cpe:2.3:h:motorola:razr_m:-:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.0004

Низкий

6.2 Medium

CVSS2

Дефекты

CWE-16

Связанные уязвимости

GHSA-f77x-fv8h-f6jg

github

больше 3 лет назад

The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local users to unlock the bootloader by using kernel mode to perform crafted 0x9 and 0x2 SMC operations, a different vulnerability than CVE-2013-2596.

EPSS

Процентиль: 12%

0.0004

Низкий

6.2 Medium

CVSS2

Дефекты

CWE-16