CVE-2023-30665

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Jul 6, 2023

Updated: Nov 7, 2023

CWE ID 125

Summary

CVE-2023-30665 is an input validation vulnerability that affects OnOemServiceMode in libsec-ril before the SMR Jul-2023 Release 1. Attackers who can locally access this component can exploit this weakness to trigger an Out-Of-Bounds read, potentially resulting in unintended system behavior or information disclosure. This issue may lead to significant security implications and requires immediate attention and patching to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r5FnQL
https://www.cve.org/CVERecord?id=CVE-2023-30665
https://nvd.nist.gov/vuln/detail/CVE-2023-30665

Back to Vulnerability Database