CVE-2023-26085

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-26085
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-26085.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-26085
Aliases
Published
2023-06-29T17:15:09Z
Modified
2025-10-16T09:35:34.757405Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A possible out-of-bounds read and write (due to an improper length check of shared memory) was discovered in Arm NN Android-NN-Driver before 23.02.

References

Affected packages

Git / github.com/arm-software/android-nn-driver

Affected ranges

Type
GIT
Repo
https://github.com/arm-software/android-nn-driver
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
084cb4dcb9eca3eac3fc634f052ddb7d7fcc0bb4

Affected versions

v18.*

v18.02
v18.03
v18.05
v18.05.02
v18.08
v18.08.01
v18.11

v19.*

v19.02
v19.05

v22.*

v22.11

Database specific

vanir_signatures

[
    {
        "source": "https://github.com/arm-software/android-nn-driver/commit/084cb4dcb9eca3eac3fc634f052ddb7d7fcc0bb4",
        "id": "CVE-2023-26085-4cf67b81",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "ArmnnPreparedModel.cpp"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "108093247457242862932705601676951436067",
                "183993095907725827716024203913748489204",
                "310249296540920342889059669191270521527",
                "290888939993917933421363898701547908916",
                "182815047122004711499443004920656330888",
                "290850041260440721222140400730330408786",
                "337291274199302095754128817955703699830",
                "2129984650297239480400030446362866782",
                "212953055460209299904409080245719458065",
                "293958522707498021509144152581487503073",
                "159339833113843764809774551908791803643",
                "181088271660091190024169504192546922610",
                "220585977197564100877090767463811140508",
                "265541786405574018255036033125319127075"
            ]
        }
    },
    {
        "source": "https://github.com/arm-software/android-nn-driver/commit/084cb4dcb9eca3eac3fc634f052ddb7d7fcc0bb4",
        "id": "CVE-2023-26085-64873a62",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "ArmnnPreparedModel_1_2.cpp"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "13481202496802215918308809773533634536",
                "290850041260440721222140400730330408786",
                "337291274199302095754128817955703699830",
                "62629653900861686630386019510534576955",
                "39795324832247819348208910786060814630",
                "20469788423209364435154923964595986831",
                "255589650365730106668600473126922176076",
                "159339833113843764809774551908791803643",
                "170756461915969612336158372886469689923",
                "139910259889970886596749977910827129801",
                "216648465015399536003085208433228639570"
            ]
        }
    },
    {
        "source": "https://github.com/arm-software/android-nn-driver/commit/084cb4dcb9eca3eac3fc634f052ddb7d7fcc0bb4",
        "id": "CVE-2023-26085-810db861",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "Utils.cpp"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "319812839630092884845001307580866270198",
                "71371951724392048575301225473360190965",
                "305986375966217029627573650426201858949"
            ]
        }
    },
    {
        "source": "https://github.com/arm-software/android-nn-driver/commit/084cb4dcb9eca3eac3fc634f052ddb7d7fcc0bb4",
        "id": "CVE-2023-26085-8a5a3bd7",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "Utils.hpp"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "93940602731752394589208238580810751293",
                "22942180618970108482402812020601479852",
                "211454432699042472127855504925454946742",
                "54555616245433206088311604777981157141",
                "153946256626319682866352398023982288695"
            ]
        }
    },
    {
        "source": "https://github.com/arm-software/android-nn-driver/commit/084cb4dcb9eca3eac3fc634f052ddb7d7fcc0bb4",
        "id": "CVE-2023-26085-c909ed94",
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "ArmnnPreparedModel_1_3.cpp"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "215317360072382730221681078267202828776",
                "290850041260440721222140400730330408786",
                "337291274199302095754128817955703699830",
                "62629653900861686630386019510534576955",
                "39795324832247819348208910786060814630",
                "20469788423209364435154923964595986831",
                "180533814372324840380681635481738836704",
                "142556998508475415908860314858556947405",
                "269345612907727522839332935940032241878",
                "297370759766700495195554699311241709231",
                "251590996605635408381333228542222247627",
                "166313452166488927465075611383787818431",
                "330551225941947629982846488108954863551",
                "118035927141183212439317188310405486035",
                "164755391257635869810683221253008214046",
                "278841095491934406904363211416639746708"
            ]
        }
    }
]