Описание
ims_ex is a vendor system service used to manage VoLTE in unisoc devices,But it does not verify the caller's permissions,so that normal apps (No phone permissions) can obtain some VoLTE sensitive information and manage VoLTE calls.Product: AndroidVersions: Android SoCAndroid ID: A-206492634
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00113
Низкий
9.1 Critical
CVSS3
9.4 Critical
CVSS2
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 9.1
github
около 4 лет назад
ims_ex is a vendor system service used to manage VoLTE in unisoc devices?But it does not verify the caller's permissions?so that normal apps (No phone permissions) can obtain some VoLTE sensitive information and manage VoLTE calls.Product: AndroidVersions: Android SoCAndroid ID: A-206492634
EPSS
Процентиль: 30%
0.00113
Низкий
9.1 Critical
CVSS3
9.4 Critical
CVSS2
Дефекты
CWE-276