Lucene search
HistoryDec 06, 2022 - 7:15 a.m.
CVE-2022-39099
power management
permission check
execution privileges
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.7%
In power management service, there is a missing permission check. This could lead to set up power management service with no additional execution privileges needed.
Affected configurations
Node
googleandroidMatch10.0
ORgoogleandroidMatch11.0
ORgoogleandroidMatch12.0
unisocs8000Match-
ORunisocsc7731eMatch-
ORunisocsc9832eMatch-
ORunisocsc9863aMatch-
ORunisoct310Match-
ORunisoct606Match-
ORunisoct610Match-
ORunisoct612Match-
ORunisoct616Match-
ORunisoct618Match-
ORunisoct760Match-
ORunisoct770Match-
ORunisoct820Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| android | 10.0 | cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:* | |
| android | 11.0 | cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:* | |
| android | 12.0 | cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* | |
| unisoc | s8000 | - | cpe:2.3:h:unisoc:s8000:-:*:*:*:*:*:*:* |
| unisoc | sc7731e | - | cpe:2.3:h:unisoc:sc7731e:-:*:*:*:*:*:*:* |
| unisoc | sc9832e | - | cpe:2.3:h:unisoc:sc9832e:-:*:*:*:*:*:*:* |
| unisoc | sc9863a | - | cpe:2.3:h:unisoc:sc9863a:-:*:*:*:*:*:*:* |
| unisoc | t310 | - | cpe:2.3:h:unisoc:t310:-:*:*:*:*:*:*:* |
| unisoc | t606 | - | cpe:2.3:h:unisoc:t606:-:*:*:*:*:*:*:* |
| unisoc | t610 | - | cpe:2.3:h:unisoc:t610:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-39099
2022-12-06 00:00:00
cve
cve
CVE-2022-39099
2022-12-06 07:15:17
prion
prion
Design/Logic Flaw
2022-12-06 07:15:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.7%
Related for NVD:CVE-2022-39099