Vulnerabilidades em Unisoc (Shanghai) Technologies Co., Ltd.

647 resultados
Análise Vexday

Com 647 CVEs catalogadas e nenhuma presença no catálogo KEV da CISA, a Unisoc apresenta taxa de exploração ativa abaixo da média geral do catálogo, o que sugere baixa pressão ofensiva documentada no momento. O tipo de falha mais recorrente é CWE-862 (ausência de verificação de autorização), padrão que, quando explorado, permite acesso não autorizado a recursos ou funcionalidades restritas e merece atenção especial em revisões de código e hardening. A CVE mais relevante no contexto atual é CVE-2025-31715, com escore EPSS de 0,0156, indicando probabilidade de exploração ainda baixa, mas que deve ser monitorada dado seu destaque entre as ameaças ativas. As 6 vulnerabilidades surgidas nos últimos 90 dias e a ausência de PoCs públicas apontam para um perfil de risco moderado, embora a presença de 4 CVEs críticas reforce a necessidade de acompanhamento contínuo das atualizações do fabricante.

CVE-2023-38441In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution EPSS 0.1%CVE-2024-39434MEDIUMIn drm service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with SystemEPSS 0.1%CVE-2023-38446In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2023-38462In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2023-38457In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2024-39433MEDIUMIn drm service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with SysteEPSS 0.1%CVE-2024-39440MEDIUMIn DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System exeEPSS 0.1%CVE-2023-38448In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2023-38447In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2023-38445In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2023-52352MEDIUMIn Network Adapter Service, there is a possible missing permission check. This could lead to local denial of service with no additional execEPSS 0.1%CVE-2023-40640In SoundRecorder service, there is a possible missing permission check. This could lead to local information disclosure with no additional eEPSS 0.1%CVE-2024-39439MEDIUMIn DRM service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with SysteEPSS 0.1%CVE-2023-38461In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2023-38463In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution priviEPSS 0.1%CVE-2022-48440MEDIUMIn dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution priEPSS 0.1%CVE-2022-48442MEDIUMIn dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution priEPSS 0.1%CVE-2022-48441MEDIUMIn dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution priEPSS 0.1%CVE-2022-44420MEDIUMIn modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no addEPSS 0.1%CVE-2022-47331MEDIUMIn wlan driver, there is a race condition. This could lead to local denial of service in wlan services.EPSS 0.1%