VDB
CVE-2023-33106
CVE-2023-33106
PUBLISHED
KEV
CVSS 8.699999809265137 HIGH
Es bestehen mehrere Schwachstellen in Google Android. Diese Fehler bestehen in mehreren Komponenten aufgrund mehrerer Sicherheitsprobleme. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand auszulösen, vertrauliche Informationen offenzulegen oder seine Privilegien zu erweitern. Einige der Schwachstellen erfordern eine Benutzerinteraktion, um sie erfolgreich auszunutzen.
EPSS 0.17% · 38.0th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.17%
38.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Google Android | ||
| Ubuntu | Ubuntu Linux |
Exploit Intelligence
- https://www.cisa.gov/news-events/alerts/2023/12/05/cisa-adds-four-known-exploited-vulnerabilities-catalog (certbund)
- Vulnerability in Adreno GPU driver (Qualcomm Android) (gpz)
- Vulnerability in Adreno GPU driver (Qualcomm Android) (gpz)
- Vulnerability in Adreno GPU driver (Qualcomm Android) (gpz)
- Vulnerability in Adreno GPU driver (Qualcomm Android) (gpz)
- Vulnerability in Adreno GPU driver (Qualcomm Android) (gpz)
- Vulnerability in Adreno GPU driver (Qualcomm Android) (gpz)
- CIRCL seen: CVE-2023-33106 (circl-sighting)
- CIRCL seen: CVE-2023-33106 (circl-sighting)
- CIRCL seen: CVE-2023-33106 (circl-sighting)
…and 34 more exploits
Timeline
- VulnCheck KEV Exploitation
- Oct 2, 2023 VulnCheck KEV Exploitation
- Dec 4, 2023 PoC Published
- Dec 4, 2023 CVE Published
- Dec 5, 2023 CISA KEV Added
- Dec 5, 2023 EPSS Score
- Dec 5, 2023 PoC Published
- Jan 4, 2024 EPSS Score
- Feb 2, 2024 VulnCheck KEV Exploitation
- Feb 2, 2024 EPSS Score
- Feb 6, 2024 VulnCheck KEV Exploitation
- Apr 1, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-3057.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-3057 advisory
- https://ubuntu.com/security/notices/USN-6540-1 advisory
- https://www.cisa.gov/news-events/alerts/2023/12/05/cisa-adds-four-known-exploited-vulnerabilities-catalog exploit
- https://source.android.com/docs/security/bulletin/2023-12-01 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2841.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2841 advisory
- https://security.samsungmobile.com/securityUpdate.smsb advisory