CVE-2022-39103Missing Authorization in Technologies CO LTD Sc9863a Sc9832e Sc7731e T610 T310 T606 T760 T610 T618 T606 T612 T616 T760 T770 T

CWE-862Missing Authorization2 documents2 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 98.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Unisoc Technologies CO LTD Sc9863a Sc9832e Sc7731e T610 T310 T606 T760 T610 T618 T606 T612 T616 T760 T770 TGoogle Android
Timeline
PublishedOct 14
Latest updateOct 15

Description

In Gallery service, there is a missing permission check. This could lead to local denial of service in Gallery service with no additional execution privileges needed.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDgoogle/android10.0, 11.0, 12.0+2

🔴Vulnerability Details

1
GHSA
GHSA-7995-p757-mmj4: In Gallery service, there is a missing permission check2022-10-15