Vulnerabilities > CVE-2023-40652 - Out-of-bounds Write vulnerability in Google Android 11.0

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

google

CWE-787

NVD

Published: 2023-10-08

Updated: 2023-10-11

Summary

In jpg driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed

Vulnerable Configurations

Part	Description	Count
OS	Google Google Android 11.0	1
Hardware	Unisoc Unisoc T606 - Unisoc T612 - Unisoc T616 -	3

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1707266966118531074