Описание
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible uninitialized stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.0003
Низкий
5.5 Medium
CVSS3
Дефекты
CWE-908
CWE-908
Связанные уязвимости
CVSS3: 5.5
github
больше 1 года назад
In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible uninitialized stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS
Процентиль: 8%
0.0003
Низкий
5.5 Medium
CVSS3
Дефекты
CWE-908
CWE-908