CVE-2023-30693

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Aug 10, 2023

Updated: Nov 7, 2023

CWE ID 787

Summary

CVE-2023-30693 is a newly disclosed cybersecurity vulnerability affecting the DoOemFactorySendFactoryBypassCommand function in libsec-ril before the SMR Aug-2023 Release 1. An attacker who can leverage this out-of-bounds write flaw can execute arbitrary code locally on the targeted system. This vulnerability poses a significant risk, especially in environments where the libsec-ril library is commonly used, requiring immediate remediation measures to prevent potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sRrgqr
https://www.cve.org/CVERecord?id=CVE-2023-30693
https://nvd.nist.gov/vuln/detail/CVE-2023-30693

Back to Vulnerability Database