CVE-2023-42133 – Reserved
CVE-2023-42134 – Signed partition overwrite and subsequently local code execution as root via hidden bootloader command
CVE-2023-42135 – Local code execution as root via kernel parameter injection in fastboot
CVE-2023-42136 – Privilege escalation from any user/application to system user via shell injection binder-exposed service
CVE-2023-42137 – Privilege escalation from system/shell user to root via insecure operations in systool_server daemon
CVE-2023-4818 – Bootloader downgrade via improper tokenization
https://blog.stmcyber.com/pax-pos-cves-2023/
