CVE-2022-39090

Summary

In power management service, there is a missing permission check. This could lead to set up power management service with no additional execution privileges needed.

Affected Software

VendorProductVersion RangeStatus
Unisoc (Shanghai) Technologies Co., Ltd.SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000Android10/Android11/Android12affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References