CVE-2022-38693
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-09-01
Last updated on: 2025-09-02
Assigner: Unisoc
Description
Description
In FDL1, there is a possible missing payload size check. This could lead to memory buffer overflow without requiring additional execution privileges.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| unisoc | bootrom | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in FDL1 involves a missing payload size check, which can cause a memory buffer overflow. This means that the system may write more data to a memory buffer than it can hold, potentially leading to unexpected behavior or crashes without needing extra execution privileges.
How can this vulnerability impact me? :
The impact of this vulnerability could include system instability, crashes, or potential exploitation by attackers to cause denial of service or other unintended behavior due to the memory buffer overflow.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70