SIM cards can contain applets that execute on the baseband.
The baseband often uses the same system memory as the application cpu (where android runs), and might even be in the same package or on the same silicon. In theory devices shipped with an MMU to prevent the baseband from fucking with the application processor. In reality, even Qualcomm ships broken MMU configs, and don't bother to ship a fix until the device is near EOL. I can't even imagine the horror show of Mediatek's MMU.
Of course it's also possible that this is Google playing nice with Chinese legislation...
The baseband often uses the same system memory as the application cpu (where android runs), and might even be in the same package or on the same silicon. In theory devices shipped with an MMU to prevent the baseband from fucking with the application processor. In reality, even Qualcomm ships broken MMU configs, and don't bother to ship a fix until the device is near EOL. I can't even imagine the horror show of Mediatek's MMU.
Of course it's also possible that this is Google playing nice with Chinese legislation...