exploitDog

CVE-2023-35690

Опубликовано: 04 дек. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

In RGXDestroyHWRTData of rgxta3d.c, there is a possible arbitrary code execution due to an uncaught exception. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

Ссылки

https://source.android.com/security/bulletin/2023-12-01
Vendor Advisory
https://source.android.com/security/bulletin/2023-12-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00105

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-ph4p-2cvp-7p5f

CVSS3: 9.8

github

около 2 лет назад

There is elevation of privilege.

EPSS

Процентиль: 29%

0.00105

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo