CVE-2023-31114

CRITICAL Year: 2023
CVSS v3 Score
9.1
Critical
Weakness Type
CWE-669
View all →

Vulnerability Description

An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause unintended querying of the SIM status via a crafted application.

Related Vulnerabilities

CVE-2019-1020011

CRITICAL
CVSS:9.0(Critical)

SmokeDetector intentionally does automatic deployments of updated copies of SmokeDetector without server operator authority.

CWE-6692019

CVE-2019-11875

HIGH
CVSS:8.8(High)

In AutomateAppCore.dll in Blue Prism Robotic Process Automation 6.4.0.8445, a vulnerability in access control can be exploited to escalate privileges. The vulnerability allows for abusing the applicat...

CWE-6692019

CVE-2019-13263

HIGH
CVSS:8.8(High)

D-link DIR-825AC G1 devices have Insufficient Compartmentalization between a host network and a guest network that are established by the same device. A DHCP Request is sent to the router with a certa...

CWE-6692019

CVE-2019-13266

HIGH
CVSS:8.8(High)

TP-Link Archer C3200 V1 and Archer C2 V1 devices have Insufficient Compartmentalization between a host network and a guest network that are established by the same device. A DHCP Request is sent to th...

CWE-6692019

CVE-2020-25917

HIGH
CVSS:8.8(High)

Stratodesk NoTouch Center before 4.4.68 is affected by: Incorrect Access Control. A low privileged user on the platform, for example a user with "helpdesk" privileges, can perform privileged operation...

CWE-6692020

CVE-2021-45891

HIGH
CVSS:8.8(High)

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.

CWE-6692021