ASB-A-206492634

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-206492634.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-206492634

Aliases

1731024
A-206492634
CVE-2021-39635

Published

2022-02-01T00:00:00Z

Modified

2026-05-01T15:24:27.653932Z

Summary

[none]

Details

ims_ex is a vendor system service used to manage VoLTE in unisoc devices，But it does not verify the caller's permissions，so that normal apps (No phone permissions) can obtain some VoLTE sensitive information and manage VoLTE calls.

References

https://source.android.com/security/bulletin/2022-02-01

Affected packages

Android / :unknown:

Package

Name: :unknown:

Affected ranges

Type: ECOSYSTEM
Events: Introduced

SoCVersion:0

Fixed

SoCVersion:2022-02-05

Affected versions

Other

SoCVersion

Ecosystem specific

{
    "spl": "2022-02-05",
    "severity": "High",
    "types": [
        "EoP"
    ]
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-206492634.json"