Lucene search

[email protected]CVE-2023-27652

HistoryApr 20, 2023 - 2:15 p.m.

CVE-2023-27652

2023-04-2014:15:08

CWE-400

[email protected]

web.nvd.nist.gov

cve-2023-27652

ego studio superclean

privilege escalation

denial of service

update_info

_default_.xml

nvd

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

18.8%

JSON

An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges cause a denial of service via the update_info field of the default.xml file.

Affected configurations

NVD

Node

egostudiogroupsuper_cleanMatch1.1.5android

egostudiogroupsuper_cleanMatch1.1.9android

VendorProductVersionCPE
egostudiogroupsuper_clean1.1.9cpe:/a:egostudiogroup:super_clean:1.1.9:::
egostudiogroupsuper_clean1.1.5cpe:/a:egostudiogroup:super_clean:1.1.5:::

Vendor	Product	Version	CPE
egostudiogroup	super_clean	1.1.9	cpe:/a:egostudiogroup:super_clean:1.1.9:::
egostudiogroup	super_clean	1.1.5	cpe:/a:egostudiogroup:super_clean:1.1.5:::

References

www.egostudiogroup.com/

apkpure.com/cn/super-clean-phone-cleaner/com.egostudio.clean/download

github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27652/CVE%20detail.md

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

18.8%

JSON

Related for CVE-2023-27652

nvd1 prion1 cvelist1