Local Denial of Service in flv Extractor by Unisoc
CVE-2023-42721

5.5MEDIUM

Key Information:

Vendor: Unisoc
Status: Sc9863a
Vendor: CVE Published:; 4 December 2023

Summary

The flv extractor by Unisoc is affected by a potential missing validation that allows for incorrect input to be processed. This vulnerability can result in a local denial of service condition, which does not require any special execution privileges. Users should ensure they follow best practices in input validation to mitigate these risks.

Affected Version(s)

SC9863A Android11

References

https://www.unisoc.com/en_us/secy/announcementDetail/http...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 4, 2023
Vulnerability Reserved
Sep 13, 2023