CVE-2022-47329: 
NixOS vulnerability analysis and mitigation

In wlan driver, there is a possible missing permission check that could lead to local information disclosure. The vulnerability, identified as CVE-2022-47329, affects various Android versions (10.0, 11.0, 12.0) and multiple Unisoc hardware platforms including S8000, SC7731E, SC9832E, SC9863A, T310, and T606 (NVD).

The vulnerability has been assigned a CVSS v3.1 Base Score of 5.5 (MEDIUM) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N. This indicates that the vulnerability requires local access, low attack complexity, low privileges, and no user interaction. The impact is primarily on confidentiality, with no impact on integrity or availability. The vulnerability is classified as CWE-862: Missing Authorization (NVD).

The vulnerability allows local attackers to access information that should be restricted. The high confidentiality impact rating suggests that the information disclosure could be significant, potentially exposing sensitive data to unauthorized users (NVD).

The vulnerability has been addressed through vendor updates. Users of affected devices should ensure they have applied the latest security patches provided by their device manufacturers (Unisoc Advisory).