3 matches found
CVE-2022-20137
In onCreateContextMenu of NetworkProviderSettings.java, there is a possible way for non-owner users to change WiFi settings due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Produc...
CVE-2022-20137
In onCreateContextMenu of NetworkProviderSettings.java, there is a possible way for non-owner users to change WiFi settings due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Produc...
CVE-2022-20137
CVE-2022-20137 affects Android 12/Android 12L. The issue resides in NetworkProviderSettings.java onCreateContextMenu, where a missing permission check could allow a non-owner user to change WiFi settings, enabling local elevation of privilege. Exploitation requires user interaction, and the impac...