CVE-2023-30652: 
NixOS vulnerability analysis and mitigation

CVE-2023-30652 is a vulnerability discovered in Samsung's sysinput HAL service that affects Android devices. The vulnerability involves out-of-bounds read and write operations in the callrunTspCmdNoRead function. This security flaw was identified prior to Samsung's July 2023 Security Maintenance Release (SMR) and affects devices running Android versions 11, 12, 13, and 14 (Samsung Advisory).

The vulnerability is classified as a high-severity issue with a CVSS v3.1 base score of 7.8 according to NVD, while Samsung Mobile assessed it with a score of 6.7. The vulnerability is categorized as CWE-787 (Out-of-bounds Write). The attack vector is local (AV:L), requiring low attack complexity (AC:L) and low privileges (PR:L), with no user interaction needed (UI:N). The scope is unchanged (S:U), and the impact affects confidentiality, integrity, and availability, all rated as high (C:H/I:H/A:H) (NVD).

If successfully exploited, this vulnerability allows local attackers to execute arbitrary code on the affected device. This could potentially lead to complete system compromise within the context of the affected component (CVE).

Samsung has addressed this vulnerability in the July 2023 Security Maintenance Release (SMR). Users are advised to update their devices to the latest available security patch level to protect against this vulnerability (Samsung Advisory).