CVSS: 6.4EPSS: 0%CPEs: 35EXPL: 0CVE-2022-32610
https://notcve.org/view.php?id=CVE-2022-32610
08 Nov 2022 — In vcu, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203476; Issue ID: ALPS07203476. En vcu, existe un posible use-after-free debido a una condición de ejecución. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-662: Improper Synchronization •
CVSS: 6.7EPSS: 0%CPEs: 10EXPL: 0CVE-2022-32614
https://notcve.org/view.php?id=CVE-2022-32614
08 Nov 2022 — In audio, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310571; Issue ID: ALPS07310571. En audio, existe una posible corrupción de la memoria debido a un error lógico. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2022-20445
https://notcve.org/view.php?id=CVE-2022-20445
08 Nov 2022 — In process_service_search_rsp of sdp_discovery.cc, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-225876506 En process_service_search_rsp de sdp_discovery.cc, existe una posible lectura fuera de los límites debido a una validación de entrada inco... • https://source.android.com/security/bulletin/2022-11-01 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20447
https://notcve.org/view.php?id=CVE-2022-20447
08 Nov 2022 — In PAN_WriteBuf of pan_api.cc, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-233604485 En PAN_WriteBuf de pan_api.cc, existe una posible lectura fuera de los límites debido a use after free. Esto podría dar lugar a la divulgación remota de información a través de Bluetooth sin necesi... • https://source.android.com/security/bulletin/2022-11-01 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39121
https://notcve.org/view.php?id=CVE-2022-39121
14 Oct 2022 — In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel. En sensor driver, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. Esto podría conllevar a una denegación de servicio local en el kernel • https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2022-38670
https://notcve.org/view.php?id=CVE-2022-38670
14 Oct 2022 — In soundrecorder service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed. En soundrecorder service, falta una comprobación de permisos. Esto podría conllevar a una elevación de privilegios en el servicio de contactos sin ser necesarios privilegios de ejecución adicionales • https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39117
https://notcve.org/view.php?id=CVE-2022-39117
14 Oct 2022 — In messaging service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. En messaging service, se presenta una falta de comprobación de permisos. Esto podría conllevar a una divulgación de información local sin ser necesarios privilegios de ejecución adicionales • https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39103
https://notcve.org/view.php?id=CVE-2022-39103
14 Oct 2022 — In Gallery service, there is a missing permission check. This could lead to local denial of service in Gallery service with no additional execution privileges needed. En Gallery service, se presenta una falta de comprobación de permisos. Esto podría conllevar a una denegación de servicio local en el servicio de Galería sin ser necesarios privilegios de ejecución adicionales • https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39108
https://notcve.org/view.php?id=CVE-2022-39108
14 Oct 2022 — In Music service, there is a missing permission check. This could lead to elevation of privilege in Music service with no additional execution privileges needed. En Music service, se presenta una falta de comprobación de permisos. Esto podría conllevar a una elevación de privilegios en Music service sin ser necesarios privilegios de ejecución adicionales • https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39124
https://notcve.org/view.php?id=CVE-2022-39124
14 Oct 2022 — In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel. En sensor driver, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. Esto podría conllevar a una denegación de servicio local en el kernel • https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 • CWE-400: Uncontrolled Resource Consumption CWE-787: Out-of-bounds Write •