Vulnerabilidades em Unisoc (Shanghai) Technologies Co., Ltd.

647 resultados
Análise Vexday

Com 647 CVEs catalogadas e nenhuma presença no catálogo KEV da CISA, a Unisoc apresenta taxa de exploração ativa abaixo da média geral do catálogo, o que sugere baixa pressão ofensiva documentada no momento. O tipo de falha mais recorrente é CWE-862 (ausência de verificação de autorização), padrão que, quando explorado, permite acesso não autorizado a recursos ou funcionalidades restritas e merece atenção especial em revisões de código e hardening. A CVE mais relevante no contexto atual é CVE-2025-31715, com escore EPSS de 0,0156, indicando probabilidade de exploração ainda baixa, mas que deve ser monitorada dado seu destaque entre as ameaças ativas. As 6 vulnerabilidades surgidas nos últimos 90 dias e a ausência de PoCs públicas apontam para um perfil de risco moderado, embora a presença de 4 CVEs críticas reforce a necessidade de acompanhamento contínuo das atualizações do fabricante.

CVE-2023-30934In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privEPSS 0.1%CVE-2023-42641In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional executiEPSS 0.1%CVE-2023-42643In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional executiEPSS 0.1%CVE-2023-42654In dm service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution prEPSS 0.1%CVE-2023-38444In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38452In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38451In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38458In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38443In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38456In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38442In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution EPSS 0.1%CVE-2023-38453In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38450In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38455In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38449In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-38464HIGHIn vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional executionEPSS 0.1%CVE-2023-40634In phasechecksercer, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execuEPSS 0.1%CVE-2023-40635In linkturbo, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution prEPSS 0.1%CVE-2025-31712MEDIUMIn cplog service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no EPSS 0.1%CVE-2023-40648In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%