Lucene search

[email protected]NVD:CVE-2022-47029

HistoryMay 30, 2023 - 8:15 p.m.

CVE-2022-47029

2023-05-3020:15:09

[email protected]

web.nvd.nist.gov

action launcher v50.5

privilege escalation

intent modification

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

29.1%

JSON

An issue was found in Action Launcher v50.5 allows an attacker to escalate privilege via modification of the intent string to function update.

Affected configurations

Nvd

Node

actionlauncheraction_launcherMatch50.5android

VendorProductVersionCPE
actionlauncheraction_launcher50.5cpe:2.3:a:actionlauncher:action_launcher:50.5:*:*:*:*:android:*:*

Vendor	Product	Version	CPE
actionlauncher	action_launcher	50.5	cpe:2.3:a:actionlauncher:action_launcher:50.5:::::android::

References

github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2022-47029/CVE%20detailed.md

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

29.1%

JSON

Related for NVD:CVE-2022-47029

cvelist1 prion1 cve1