Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-2390
HistoryAug 12, 2022 - 11:15 a.m.

Code injection

2022-08-1211:15:00
PRIOn knowledge base
www.prio-n.com
10
google play services
sdk
code injection
bug
attack
upgrade

8.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service. As Google Play services SDK is so widely used, this bug affects many applications. For an application affected, this bug will let the attacker, gain the access to all non-exported providers and/or gain the access to other providers the victim has permissions. We recommend upgrading to version 18.0.2 of the Play Service SDK as well as rebuilding and redeploying apps.

Related

cve 1
osv 1
nvd 1
github 1
cvelist 1
cve
cve
CVE-2022-2390
2022-08-12 11:15:07
osv
osv
Google Play Services SDK leads to apps having incorrectly set mutability flag
2022-08-13 00:00:43
nvd
nvd
CVE-2022-2390
2022-08-12 11:15:07
github
github
Google Play Services SDK leads to apps having incorrectly set mutability flag
2022-08-13 00:00:43
cvelist
cvelist
CVE-2022-2390 Mutable pending intent in Google Play services SDK
2022-08-12 10:25:08

8.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for PRION:CVE-2022-2390
cve1osv1nvd1github1cvelist1