| Vulnerability Name: | CVE-2022-39115 | ||||||
| Assigned: | 2022-10-14 | ||||||
| Published: | 2022-10-14 | ||||||
| Updated: | 2022-10-17 | ||||||
| Summary: | In Music service, there is a missing permission check. This could lead to local denial of service in Music service with no additional execution privileges needed. | ||||||
| CVSS v3 Severity: | 5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
| ||||||
| CVSS v2 Severity: | 4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C)
| ||||||
| Vulnerability Type: | CWE-862 | ||||||
| References: | Source: MITRE Type: CNA CVE-2022-39115 Source: MISC Type: Vendor Advisory https://www.unisoc.com/en_us/secy/announcementDetail/1575654905820020738 | ||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||
| BACK | |||||||