CVE-2019-2308
Description
User application could potentially make RPC call to the fastrpc driver and the driver will allow the message to go through to the remote subsystem in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.035
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Kernel-uek update (ELSA-2021-9362) kernel-uek-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2021-9362) kernel-uek-debug-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2021-9362) kernel-uek-debug-devel-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2021-9362) kernel-uek-devel-5.4.17-2102.203.5.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2021-9362) kernel-uek-doc-5.4.17-2102.203.5.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2021-9363) kernel-uek-container-5.4.17-2102.203.5.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2021-9363) kernel-uek-container-debug-5.4.17-2102.203.5.el8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234