CVE-2022-47480: 
NixOS vulnerability analysis and mitigation

CVE-2022-47480 is a vulnerability discovered in the telephony service of Android systems. The vulnerability involves a missing permission check that could lead to local denial of service in telephone service. This issue was disclosed and documented in March 2023, affecting various UNISOC chipsets and Android 10.0 systems (NVD).

The vulnerability is classified with a CVSS v3.1 Base Score of 5.5 (MEDIUM) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H. The issue stems from a missing authorization check (CWE-862) in the telephony service component. No additional execution privileges are needed to exploit this vulnerability (NVD).

The primary impact of this vulnerability is the potential for local denial of service affecting the telephone service functionality. The vulnerability does not allow for information disclosure or system integrity compromise, but specifically targets service availability (NVD).

The vulnerability affects multiple UNISOC chipsets including S8000, SC7731E, SC9832E, SC9863A, T310, T606, T610, T612, T616, T618, T760, T770, and T820, as well as Android 10.0 systems. Affected users should apply security updates provided by their device manufacturers (NVD, Vendor Advisory).