exploitDog

CVE-2023-40082

Опубликовано: 04 дек. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

In modify_for_next_stage of fdt.rs, there is a possible way to render KASLR ineffective due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Ссылки

https://android.googlesource.com/platform/packages/modules/Virtualization/+/0cf463e9949db2d30755fc63a79225a6158928d3
Mailing List
Patch
https://source.android.com/security/bulletin/2023-12-01
Patch
Third Party Advisory
https://android.googlesource.com/platform/packages/modules/Virtualization/+/0cf463e9949db2d30755fc63a79225a6158928d3
Mailing List
Patch
https://source.android.com/security/bulletin/2023-12-01
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00984

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-fc33-wf68-wr6h

CVSS3: 9.8

github

около 2 лет назад

In modify_for_next_stage of fdt.rs, there is a possible way to render KASLR ineffective due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

EPSS

Процентиль: 76%

0.00984

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo