CVE-2024-39430

Description

In faceid servive, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

Low

Affected products

Unisoc (Shanghai) Technologies Co., Ltd. / SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618Android12 – Android12

References

MISChttps://www.unisoc.com/en_us/secy/announcementDetail/1807576926177525762