ASB-A-207479207

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-207479207.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-207479207

Aliases

1732729
A-207479207
CVE-2021-39658

Published

2022-02-01T00:00:00Z

Modified

2026-04-10T16:16:18.068628Z

Summary

[none]

Details

ismsEx service is a vendor service in unisoc equipment。ismsEx service is an extension of sms system service，but it does not check the permissions of the caller，resulting in permission leaks。Third-party apps can use this service to arbitrarily modify and set system properties。

References

https://source.android.com/security/bulletin/2022-02-01

Affected packages

Android / :unknown:

Package

Name: :unknown:

Affected ranges

Type: ECOSYSTEM
Events: Introduced

SoCVersion:0

Fixed

SoCVersion:2022-02-05

Affected versions

Other

SoCVersion

Ecosystem specific

{
    "severity": "High",
    "types": [
        "EoP"
    ],
    "spl": "2022-02-05"
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-207479207.json"