CVE-2022-39115

Summary

In Music service, there is a missing permission check. This could lead to local denial of service in Music service with no additional execution privileges needed.

Affected Software

VendorProductVersion RangeStatus
Unisoc (Shanghai) Technologies Co., Ltd.SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000Android10/Android11affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References