← voltar
CVE-2023-48403

CVE-2023-48403

EPSS 0.4%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
08 dez 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In sms_DecodeCodedTpMsg of sms_PduCodec.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure if the attacker is able to observe the behavior of the subsequent switch conditional with no additional execution privileges needed. User interaction is not needed for exploitation.
Produtos afetados
Google · Android