4 matches found
CVE-2022-20220
In openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid...
CVE-2022-20220
creationtimestamp| type| source ---|---|--- 2022-07-13 22:37:04+00:00| seen| https://t.me/cibsecurity/46180...
CVE-2022-20220
In openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid...
CVE-2022-20220
CVE-2022-20220 affects Android 12/12L where the OpenFile path traversal in CallLogProvider.java can bypass permissions, enabling local escalation of privilege with user privileges and no user interaction required. The root cause is a path traversal fault in openFile that could allow access to pri...