Vulnerabilidades em Unisoc (Shanghai) Technologies Co., Ltd.

647 resultados
Análise Vexday

Com 647 CVEs catalogadas e nenhuma presença no catálogo KEV da CISA, a Unisoc apresenta taxa de exploração ativa abaixo da média geral do catálogo, o que sugere baixa pressão ofensiva documentada no momento. O tipo de falha mais recorrente é CWE-862 (ausência de verificação de autorização), padrão que, quando explorado, permite acesso não autorizado a recursos ou funcionalidades restritas e merece atenção especial em revisões de código e hardening. A CVE mais relevante no contexto atual é CVE-2025-31715, com escore EPSS de 0,0156, indicando probabilidade de exploração ainda baixa, mas que deve ser monitorada dado seu destaque entre as ameaças ativas. As 6 vulnerabilidades surgidas nos últimos 90 dias e a ausência de PoCs públicas apontam para um perfil de risco moderado, embora a presença de 4 CVEs críticas reforce a necessidade de acompanhamento contínuo das atualizações do fabricante.

CVE-2023-38465In ims service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution pEPSS 0.1%CVE-2023-38454In vowifi service, there is a possible missing permission check.This could lead to local information disclosure with no additional executionEPSS 0.1%CVE-2023-40645In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2025-31711MEDIUMIn cplog service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with no additEPSS 0.1%CVE-2023-40633In phasecheckserver, there is a possible missing permission check. This could lead to local information disclosure with no additional executEPSS 0.1%CVE-2023-40649In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-52535MEDIUMIn vsp driver, there is a possible missing verification incorrect input. This could lead to local denial of service with no additional execuEPSS 0.1%CVE-2023-40641In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-40643In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-40642In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-40637In telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional executiEPSS 0.1%CVE-2023-40644In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-40639In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional eEPSS 0.1%CVE-2023-38466In ims service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution pEPSS 0.1%CVE-2023-42631In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional executiEPSS 0.1%CVE-2023-40647In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-40646In Messaging, there is a possible missing permission check. This could lead to local information disclosure with no additional execution priEPSS 0.1%CVE-2023-30936In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privEPSS 0.1%CVE-2023-38440In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution EPSS 0.1%CVE-2023-40650In Telecom service, there is a possible missing permission check. This could lead to local information disclosure with no additional executiEPSS 0.1%