Login Sign Up

CVE-2023-42743

7.8 HIGH

📋 TL;DR

This CVE describes a missing permission check vulnerability in telecom services that allows local attackers to escalate privileges without requiring additional execution privileges. It affects systems running vulnerable telecom service components, potentially impacting mobile devices and telecom infrastructure. The vulnerability enables attackers to gain elevated access to system resources they shouldn't normally have.

💻 Affected Systems

Products:
  • Unisoc telecom service components
Versions: Specific versions not detailed in provided references
Operating Systems: Android-based systems with Unisoc chipsets
Default Config Vulnerable: ⚠️ Yes
Notes: Affects devices using Unisoc chipsets with vulnerable telecom service implementations. Exact product list requires vendor confirmation.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

Android by Google

View all CVEs affecting Android →

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker gains full system control, accesses sensitive user data, modifies system configurations, or installs persistent malware.

🟠

Likely Case

Local attackers gain elevated privileges to access restricted system resources, potentially compromising user privacy and system integrity.

🟢

If Mitigated

With proper permission controls and isolation, impact is limited to the specific telecom service component without system-wide compromise.

🌐 Internet-Facing: LOW - This is a local privilege escalation requiring local access to the system.
🏢 Internal Only: HIGH - Local attackers or malicious apps can exploit this to gain elevated privileges on affected devices.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires local access but no special privileges. The missing permission check suggests straightforward exploitation once identified.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified in provided references

Vendor Advisory: https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049

Restart Required: Yes

Instructions:

1. Check with device manufacturer for security updates. 2. Apply available firmware/OS updates. 3. For custom implementations, implement proper permission checks in telecom service code.

🔧 Temporary Workarounds

Restrict local access

all

Limit physical and remote local access to affected devices

Disable unnecessary services

android

Disable telecom services not required for device operation

🧯 If You Can't Patch

  • Implement strict application sandboxing and permission controls
  • Monitor for unusual privilege escalation attempts and system modifications

🔍 How to Verify

Check if Vulnerable:

Check device manufacturer security bulletins for CVE-2023-42743. Review telecom service permission configurations.

Check Version:

adb shell getprop ro.build.version.security_patch (for Android devices)

Verify Fix Applied:

Verify security patch level includes CVE-2023-42743 fix. Test permission checks in telecom service.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected permission requests from telecom services
  • Privilege escalation attempts in system logs
  • Unauthorized access to protected system resources

Network Indicators:

  • Not applicable - local vulnerability

SIEM Query:

source="android_system" AND (event="permission_violation" OR event="privilege_escalation") AND service="telecom"

📊 Metadata

CVE ID: CVE-2023-42743
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-862
Published: December 4, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-42743, you might also want to check these:

CVE-2024-6071 10.0

CVE-2024-6071 is a critical remote code execution vulnerability in PTC Creo Elements/Direct License ...

Same vulnerability type (CWE-862)
CVE-2022-0543 10.0

CVE-2022-0543 is a critical Lua sandbox escape vulnerability in Redis on Debian-based systems that a...

Same vulnerability type (CWE-862)
CVE-2024-6500 10.0

This vulnerability allows unauthenticated attackers to read and delete arbitrary files on WordPress ...

Same vulnerability type (CWE-862)