PT-2025-23568

Name of the Vulnerable Software and Affected Versions Unisoc devices affected versions not specified Description The issue is related to a possible command injection in the engineermode service due to improper input validation. This could lead to local escalation of privilege with no additional...

PT-2023-28560 · Unisoc (Shanghai) Technologies Co. +1 · Sc7731E/Sc9832E/Sc9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000 +1

Name of the Vulnerable Software and Affected Versions: Telecom service affected versions not specified Description: The issue concerns a missing permission check that could allow writing permission usage records of an app. This may lead to local information disclosure without requiring additional...

PT-2023-28564 · Unisoc (Shanghai) Technologies Co. +1 · Sc7731E/Sc9832E/Sc9863A/T310/T606/T612/T616/T610/T618/T760/T770/T820/S8000 +1

Name of the Vulnerable Software and Affected Versions: Telecom service affected versions not specified Description: The issue is related to a missing permission check in the telecom service, allowing for the writing of permission usage records of an app. This could lead to local escalation of...

PT-2023-23020 · Unisoc (Shanghai) Technologies Co. +1 · Sc9863A/Sc9832E/Sc7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000 +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to a missing permission check in the dialer service, which could lead to local information disclosure without requiring additional execution privileges...

Google Android OS和unisoc部分产品缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...

Google Android OS和unisoc部分产品数字错误漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...

Google Android OS和unisoc部分产品缓冲区错误漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...

Google Android OS和unisoc部分产品输入验证错误漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in some Google Android OS and unisoc products, which stems from a lack of bounds checking in the wlan driver, leading to a local denial of service...

PT-2022-19876 · Unisoc (Shanghai) Technologies Co. +1 · Sc9863A/Sc9832E/Sc7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000 +1

Name of the Vulnerable Software and Affected Versions: music service affected versions not specified Description: The issue is related to a missing permission check in the music service, which could lead to elevation of privilege in the contacts service. This can be achieved without needing any...

The vulnerability of the NAS message processing component of the microprogramming software for 2/3/4/5G Unisoc devices allows a hacker to cause a service failure.

The vulnerability of the NAS-message processing component of microprogramming software for 2/3/4/5G Unisoc devices relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending specially crafted...

Code injection

imsex is a vendor system service used to manage VoLTE in unisoc devices?But it does not verify the caller's permissions?so that normal apps No phone permissions can obtain some VoLTE sensitive information and manage VoLTE calls.Product: AndroidVersions: Android SoCAndroid ID: A-206492634...

CVE-2021-39635

CVE-2021-39635 concerns Unisoc’s ims_ex, a vendor system service used to manage VoLTE on Android devices. The root cause is that ims_ex does not verify the caller’s permissions, allowing normal apps without phone permissions to access VoLTE‑sensitive information and to manage VoLTE calls. Various...

PT-2022-10941 · Google +1 · Android +1

Name of the Vulnerable Software and Affected Versions: Android SoC versions affected versions not specified Description: The issue concerns a vendor system service used to manage VoLTE in Unisoc devices. This service does not verify the caller's permissions, allowing normal apps without phone...