VDB
CVE-2023-5129
CVE-2023-5129
PUBLISHED
CVSS 9.300000190734863 CRITICAL
In Google Android existieren mehrere Schwachstellen. Diese bestehen in den Komponenten "Framework", "System", "Google Play System Updates", "ARM components", "MediaTek components", "Unisoc components", "Qualcomm components" sowie"Qualcomm closed-source components". Ein Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode auszuführen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuführen.
EPSS 0.04% · 12.0th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.04%
12.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gentoo | Gentoo Linux | |
| NetApp | NetApp ActiveIQ Unified Manager | |
| Fortinet | Fortinet FortiClient Mac <7.4.0 | |
| Ubuntu | Ubuntu Linux | |
| Amazon | Amazon Linux 2 | |
| Google Chrome <116.0.5845.188 | ||
| Google Android 13 | ||
| Fortinet | Fortinet FortiClient Linux <7.4.0 | |
| Fortinet | Fortinet FortiClient Linux <7.2.5 | |
| Fortinet | Fortinet FortiClient Windows <7.2.3 | |
| Fortinet | Fortinet FortiClient EMS <7.0.10 | |
| Open Source | Open Source LibreOffice <7.6.2 | |
| Google Android 12 | ||
| Microsoft | Microsoft Edge <116.0.1938.81 | |
| Google Chrome <116.0.5845.187 | ||
| Open Source | Open Source LibreOffice <7.5.7 | |
| Oracle | Oracle Linux | |
| Fedora | Fedora Linux | |
| Open Source | Open Source Kibana <7.17.14 | |
| Debian | Debian Linux |
…and 13 more
Exploit Intelligence
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc-repo)
- Shcesama/cve-2023-4863-analysis (github-poc)
- Shcesama/cve-2023-4863-analysis (github-poc)
- Shcesama/cve-2023-4863-analysis (github-poc)
…and 259 more exploits
Timeline
- Jun 28, 2021 PoC Published
- Sep 11, 2023 CVE Published
- Sep 26, 2023 EPSS Score
- Oct 5, 2023 PoC Published
- Oct 12, 2023 EPSS Score
- Oct 12, 2023 PoC Published
- Oct 28, 2023 EPSS Score
- Nov 13, 2023 EPSS Score
- Nov 29, 2023 EPSS Score
- Dec 6, 2023 PoC Published
- Dec 7, 2023 PoC Published
- Feb 23, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2305.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2305 advisory
- https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html advisory
- https://msrc.microsoft.com/update-guide/ advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d5faede1d6 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-f8319bd876 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-c4fa8a204d advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-3388038193 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-509640a8a6 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-788f9bbb3f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-32fa4259f4 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-9a6fd7a504 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-3d1935dc6a advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-ea08732e6a advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-d58a84dda8 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-0de0929147 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-c66924cb92 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-54433bc31f advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2023-3bfb63f6d2 advisory
- https://access.redhat.com/errata/RHSA-2023:5185 advisory
…and 88 more