ByteOS Network

Vulnerability Details :

CVE-2024-39440

Assigner-Unisoc

Assigner Org ID-63f92e9c-2193-4c24-98a9-93640392c3d3

Published At-09 Oct, 2024 | 06:43

Updated At-09 Oct, 2024 | 17:53

In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:Unisoc

Assigner Org ID:63f92e9c-2193-4c24-98a9-93640392c3d3

Published At:09 Oct, 2024 | 06:43

Updated At:09 Oct, 2024 | 17:53

▼CVE Numbering Authority (CNA)

In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed.

Affected Products

Vendor

Unisoc (Shanghai) Technologies Co., Ltd.

Product

T606/T612/T616/T610/T618/T760/T770/T820/S8000

Default Status

unaffected

Versions

Affected

Android13/Android14

Problem Types

Type	CWE ID	Description
CWE	cwe-476	cwe-476 NULL Pointer Dereference

Type: CWE

CWE ID: cwe-476

Description: cwe-476 NULL Pointer Dereference

Metrics

Version	Base score	Base severity	Vector
3.1	6.2	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Version: 3.1

Base score: 6.2

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Hyperlink	Resource
https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897	N/A

Hyperlink: https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:security@unisoc.com

Published At:09 Oct, 2024 | 07:15

Updated At:17 Oct, 2024 | 17:33

In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed.