CVE-2022-42764 is an integer overflow vulnerability identified in the WLAN driver of several Unisoc (Shanghai) Technologies Co., Ltd. chipsets, including SC9863A, SC9832E, SC7731E, T610, T310, T606, T760, T618, T612, T616, T770, T820, and S8009. These chipsets are commonly integrated into Android devices running versions 10, 11, and 12. The vulnerability arises due to a missing bounds check in the WLAN driver code, which can cause an integer overflow condition (CWE-190). This flaw can be triggered locally by an attacker with low privileges (local access with low privileges) without requiring user interaction. Exploiting this vulnerability can lead to a denial of service (DoS) condition affecting WLAN services, effectively disrupting wireless network connectivity on the affected device. The CVSS v3.1 base score is 5.5 (medium severity), with the vector indicating local attack vector (AV:L), low attack complexity (AC:L), requiring low privileges (PR:L), no user interaction (UI:N), unchanged scope (S:U), no impact on confidentiality or integrity (C:N, I:N), but high impact on availability (A:H). No known exploits are currently reported in the wild, and no patches have been publicly linked yet. The vulnerability is specific to the WLAN driver implementation in these Unisoc chipsets, which are widely used in budget and mid-range Android smartphones, particularly in markets where Unisoc SoCs have significant penetration. The integer overflow can cause memory corruption or logic errors leading to service crashes, thereby denying WLAN functionality locally on the device.

For European organizations, the primary impact of CVE-2022-42764 is the potential disruption of wireless network connectivity on devices using affected Unisoc chipsets. This can lead to temporary loss of network access, affecting mobile workforce productivity, especially in environments relying on mobile devices for critical communications or remote access. Although the vulnerability does not compromise confidentiality or integrity, the denial of service on WLAN services can interrupt business operations, particularly for organizations with Bring Your Own Device (BYOD) policies or those deploying Unisoc-based devices in their mobile fleets. The impact is more pronounced in sectors where continuous connectivity is essential, such as logistics, healthcare, and field services. Since exploitation requires local access and low privileges, the risk is higher in environments where physical or local device access is possible, such as shared workspaces or public areas. The absence of known exploits reduces immediate risk, but the medium severity score and ease of exploitation suggest that attackers could develop exploits, increasing future risk. Additionally, the lack of patches means affected devices remain vulnerable until vendors release updates, potentially prolonging exposure.

1. Inventory and Identification: Organizations should identify devices using Unisoc chipsets listed in the vulnerability and verify their Android OS versions (10, 11, 12). 2. Vendor Coordination: Engage with device manufacturers and Unisoc to obtain timelines for patches or firmware updates addressing this vulnerability. 3. Network Access Controls: Limit local access to devices, especially in shared or public environments, to reduce the risk of local exploitation. 4. Device Usage Policies: Restrict use of affected devices in high-risk or critical operational contexts until patches are available. 5. Monitoring and Incident Response: Implement monitoring for unusual WLAN service disruptions or device crashes that could indicate exploitation attempts. 6. Alternative Connectivity: Prepare fallback connectivity options (e.g., wired connections or alternative wireless adapters) for critical users to maintain operations during potential WLAN outages. 7. User Awareness: Educate users about the risk of local attacks and encourage secure handling of devices to prevent unauthorized physical access. 8. Firmware Updates: Once patches are released, prioritize timely deployment of firmware and driver updates to affected devices. 9. Segmentation: Segment mobile device networks to contain potential impact of WLAN service disruptions and prevent lateral movement.