Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistGoogle_androidCVELIST:CVE-2022-20226
HistoryJul 13, 2022 - 6:23 p.m.

CVE-2022-20226

2022-07-1318:23:07
google_android
www.cve.org
5
tapjacking
finishdrawingwindow
android-12
android-12l
escalation of privilege
input validation
user interaction

AI Score

4.9

Confidence

High

EPSS

0

Percentile

5.1%

JSON

In finishDrawingWindow of WindowManagerService.java, there is a possible tapjacking due to improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid ID: A-213644870

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-12 Android-12L"
      }
    ]
  }
]

Related

osv 1
prion 1
cnvd 1
nvd 1
cve 1
osv
osv
SF Security Vulnerability, Privilege Escalation through transaction merging
2022-07-01 00:00:00
prion
prion
Input validation
2022-07-13 19:15:00
cnvd
cnvd
Google Android Elevation of Privilege Vulnerability (CNVD-2022-57607)
2022-07-08 00:00:00
nvd
nvd
CVE-2022-20226
2022-07-13 19:15:09
cve
cve
CVE-2022-20226
2022-07-13 19:15:09

AI Score

4.9

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2022-20226
osv1prion1cnvd1nvd1cve1