CVE-2022-48389
https://notcve.org/view.php?id=CVE-2022-48389
In modem control device, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1654776866982133761 • CWE-787: Out-of-bounds Write •
CVE-2022-44433
https://notcve.org/view.php?id=CVE-2022-44433
In phoneEx service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges. • https://www.unisoc.com/en_us/secy/announcementDetail/1654776866982133761 • CWE-862: Missing Authorization •
CVE-2022-48388
https://notcve.org/view.php?id=CVE-2022-48388
In powerEx service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges. • https://www.unisoc.com/en_us/secy/announcementDetail/1654776866982133761 • CWE-862: Missing Authorization •
CVE-2022-39089
https://notcve.org/view.php?id=CVE-2022-39089
In mlog service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1654776866982133761 • CWE-125: Out-of-bounds Read •
CVE-2022-38685
https://notcve.org/view.php?id=CVE-2022-38685
In bluetooth service, there is a possible missing permission check. This could lead to local denial of service in bluetooth service with no additional execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1654776866982133761 • CWE-862: Missing Authorization •