Summary

Security CVES
High CVE-2022-47339,CVE-2022-47331
Medium CVE-2022-47341,CVE-2022-47342,CVE-2022-47343,CVE-2022-47344,CVE-2022-47345,CVE-2022-47346,CVE-2022-47347,CVE-2022-47348,CVE-2022-47354,CVE-2022-47355,CVE-2022-47356,CVE-2022-47357,CVE-2022-47358,CVE-2022-47359,CVE-2022-47360,CVE-2022-47361,CVE-2022-38675,CVE-2022-38674,CVE-2022-38680,CVE-2022-38681,CVE-2022-38686,CVE-2022-42783,CVE-2022-44448,CVE-2022-47322,CVE-2022-47323,CVE-2022-47324,CVE-2022-47325,CVE-2022-47326,CVE-2022-47327,CVE-2022-47328,CVE-2022-47329,CVE-2022-47330,CVE-2022-47450,CVE-2022-47332,CVE-2022-47333,CVE-2022-44421,CVE-2022-44447,CVE-2022-47363,CVE-2022-47364,CVE-2022-47365,CVE-2022-47366,CVE-2022-47367,CVE-2022-47368,CVE-2022-47369,CVE-2022-47370,CVE-2022-47371,CVE-2022-47451,CVE-2022-47452

Minutia

CVE ID CVE-2022-47339
Title Improper neutralization of special elements used in an OS command ('OS Command Injection') in cmd services
Description
In cmd services, there is a OS command injection issue due to missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
Technology Area Android
Vulnerability Type CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Access Vector Local
CVSS Rating High
CVSS Score 7.2
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47331
Title Concurrent execution using shared resource with improper synchronization ('race condition') in wlan driver
Description
In wlan driver, there is a race condition. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating High
CVSS Score 7.3
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47341
Title Missing authorization in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
Technology Area Android
Vulnerability Type CWE-862 Missing Authorization
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47342
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47343
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47344
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47345
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47346
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47347
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47348
Title Array Index Underflow in engineermode services
Description
In engineermode services, there is a missing permission check. This could lead to local denial of service in engineermode services.
Technology Area Android
Vulnerability Type CWE-129 Array Index Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-47354
Title Denial of Service in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-400 Denial of Service
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47355
Title Denial of Service in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-400 Denial of Service
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47356
Title Denial of Service in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-400 Denial of Service
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47357
Title Denial of Service in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-400 Denial of Service
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47358
Title Missing Authorization in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-862 Missing Authorization
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47359
Title NULL pointer dereference in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-476 NULL Pointer Dereference
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47360
Title NULL pointer dereference in log service
Description
In log service, there is a missing permission check. This could lead to local denial of service in log service.
Technology Area Android
Vulnerability Type CWE-476 NULL Pointer Dereference
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47361
Title Missing authorization in firewall service
Description
In firewall service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
Technology Area Android
Vulnerability Type CWE-862 Missing Authorization
Access Vector Local
CVSS Rating Medium
CVSS Score 4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-38675
Title Heap-based buffer overflow in gpu driver
Description
In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
Technology Area Kernel
Vulnerability Type CWE-121 Stack-based Buffer Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.3
CVSS String CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-38674
Title Integer overflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-190 Integer Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-38680
Title Integer overflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-190 Integer Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-38681
Title Integer underflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-191 Integer Underflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-38686
Title Information disclosure in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-200 Information Disclosure
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11

CVE ID CVE-2022-42783
Title Heap overflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-122 Heap Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-44448
Title Stack overflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-121 Stack Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47322
Title Integer overflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-190 Integer Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47323
Title Out of memory read in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-125 Out-of-bounds Read
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47324
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47325
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47326
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47327
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47328
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47329
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47330
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47450
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47332
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47333
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-44421
Title Exposure of sensitive Information to an unauthorized actor in wlan driver
Description
In wlan driver, there is a possible missing permission check. This could lead to local In wlan driver, information disclosure.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-44447
Title NULL pointer dereference in wlan driver
Description
In wlan driver, there is a possible null pointer dereference issue due to a missing bounds check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-476 NULL Pointer Dereference
Access Vector Local
CVSS Rating Medium
CVSS Score 6.6
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47363
Title OOB write/arbitrary memory read issue
Description
In wlan driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-125 out of memory read
Access Vector Local
CVSS Rating Medium
CVSS Score 5.7
CVSS String CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47364
Title OOB write/arbitrary memory read issue
Description
In wlan driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating Medium
CVSS Score 5.7
CVSS String CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47365
Title Out-of-bounds write in wlan driver
Description
In wlan driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47366
Title Out-of-bounds write in wlan driver
Description
In wlan driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47367
Title Exposure of Sensitive Information to an Unauthorized Actor in bluetooth driver
Description
In bluetooth driver, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
Technology Area Kerenl
Vulnerability Type CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
Access Vector Local
CVSS Rating Medium
CVSS Score 4.8
CVSS String CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47368
Title Out-of-bounds write in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating Medium
CVSS Score 5.7
CVSS String CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47369
Title Out-of-bounds write in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating Medium
CVSS Score 5.7
CVSS String CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47370
Title Denial of service in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-400 Denial of Service
Access Vector Local
CVSS Rating Medium
CVSS Score 4.8
CVSS String CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47371
Title Use after free in bluetooth driver
Description
In bt driver, there is a thread competition leads to early release of resources to be accessed. This could lead to local denial of service in kernel.
Technology Area Kerenl
Vulnerability Type CWE-416 Use After Free
Access Vector Local
CVSS Rating Medium
CVSS Score 5.5
CVSS String CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47451
Title Integer Overflow in wlan driver
Description
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-190 Integer Overflow
Access Vector Local
CVSS Rating Medium
CVSS Score 6.6
CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

CVE ID CVE-2022-47452
Title Out-of-bounds write in gnss driver
Description
In gnss driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services.
Technology Area Kerenl
Vulnerability Type CWE-787 Out-of-bounds Write
Access Vector Local
CVSS Rating Medium
CVSS Score 6.4
CVSS String CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Chipsets*
SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000
Affected Software Versions
Android10/Android11/Android12

*The list of affected chipsets may not be complete. For latest information, device OEMs can contact directly at https://unisupport.unisoc.com

Vulnerability type definition

Abbreviation Interpretation
RCE Remote Code Execution
EoP Elevation of Privilege
ID Information Disclosure
DoS Denial of Service
N/A Classification not available

Version

Version Date Description
1.0 2023-02-03