exploitDog

CVE-2023-36629

Опубликовано: 09 янв. 2024

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

The ST ST54-android-packages-apps-Nfc package before 130-20230215-23W07p0 for Android has an out-of-bounds read.

Ссылки

https://github.com/STMicroelectronics/ST54-android-packages-apps-Nfc/releases/tag/130-20230215-23W07p0
Release Notes
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/hunting-for-android-privilege-escalation-with-a-32-line-fuzzer/
Exploit
Press/Media Coverage
https://www.trustwave.com/hubfs/Web/Library/Advisories_txt/TWSL2023-007_Xiaomi_Redmi_10sNote-1.txt
Exploit
Third Party Advisory
https://github.com/STMicroelectronics/ST54-android-packages-apps-Nfc/releases/tag/130-20230215-23W07p0
Release Notes
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/hunting-for-android-privilege-escalation-with-a-32-line-fuzzer/
Exploit
Press/Media Coverage
https://www.trustwave.com/hubfs/Web/Library/Advisories_txt/TWSL2023-007_Xiaomi_Redmi_10sNote-1.txt
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:st:st54-android-packages-apps-nfc:*:*:*:*:*:*:*:*

Версия до 130-20230215-23w07p0 (исключая)

EPSS

Процентиль: 12%

0.00042

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-125

CWE-125

Связанные уязвимости

GHSA-7mr2-5jpg-77cw

CVSS3: 5.5

github

около 2 лет назад

The ST ST54-android-packages-apps-Nfc package before 130-20230215-23W07p0 for Android has an out-of-bounds read.

EPSS

Процентиль: 12%

0.00042

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-125

CWE-125