{"id":"ASB-A-207479207", "published":"2022-02-01T00:00:00Z", "modified":"2026-04-14T15:05:17.852631365Z", "aliases":["CVE-2021-39658", "1732729", "A-207479207"], "details":"ismsEx service is a vendor service in unisoc equipment。ismsEx service is an extension of sms system service，but it does not check the permissions of the caller，resulting in permission leaks。Third-party apps can use this service to arbitrarily modify and set system properties。", "affected":[{"package":{"name":":unknown:", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"SoCVersion:0"}, {"fixed":"SoCVersion:2022-02-05"}]}], "versions":["SoCVersion"], "ecosystem_specific":{"severity":"High", "spl":"2022-02-05", "types":["EoP"]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2022-02-01"}]}