CVE-2022-39083
https://notcve.org/view.php?id=CVE-2022-39083
In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-862: Missing Authorization •
CVE-2022-44430
https://notcve.org/view.php?id=CVE-2022-44430
In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services. En el controlador WLAN, existe una posible verificación de los límites faltantes. Esto podría provocar una denegación local de servicio en los servicios WLAN. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVE-2022-39118
https://notcve.org/view.php?id=CVE-2022-39118
In sprd_sysdump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel. En el controlador sprd_sysdump, existe una posible escritura fuera de los límites debido a una comprobación de los límites faltante. Esto podría provocar una denegación de servicio local en el kernel. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVE-2022-44439
https://notcve.org/view.php?id=CVE-2022-44439
In messaging service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed. En el servicio de mensajería, falta una verificación de permisos. Esto podría provocar una denegación de servicio local en el servicio de contactos sin necesidad de privilegios de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-862: Missing Authorization •
CVE-2022-39081
https://notcve.org/view.php?id=CVE-2022-39081
In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-862: Missing Authorization •