Lucene search

[email protected]NVD:CVE-2023-42562

HistoryDec 05, 2023 - 3:15 a.m.

CVE-2023-42562

2023-12-0503:15:16

CWE-190

[email protected]

web.nvd.nist.gov

integer overflow

libfacepreprocessingjni

samsung.

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.0%

JSON

Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of libFacePreProcessingjni.camera.samsung.so prior to SMR Dec-2023 Release 1 allows attacker to trigger heap overflow.

Affected configurations

NVD

Node

samsungandroidRange12.0–14.0

samsungandroidMatch14.0-

samsungandroidMatch14.0smr-apr-2023-r1

samsungandroidMatch14.0smr-aug-2023-r1

samsungandroidMatch14.0smr-dec-2022-r1

samsungandroidMatch14.0smr-feb-2023-r1

samsungandroidMatch14.0smr-jan-2023-r1

samsungandroidMatch14.0smr-jul-2023-r1

samsungandroidMatch14.0smr-jun-2023-r1

samsungandroidMatch14.0smr-mar-2023-r1

samsungandroidMatch14.0smr-may-2023-r1

samsungandroidMatch14.0smr-nov-2022-r1

samsungandroidMatch14.0smr-nov-2023-r1

samsungandroidMatch14.0smr-oct-2022-r1

samsungandroidMatch14.0smr-oct-2023-r1

samsungandroidMatch14.0smr-sep-2023-r1

References

security.samsungmobile.com/securityUpdate.smsb?year=2023&month=12

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2023-42562

prion1 cvelist1 cve1