3 matches found
CVE-2022-20340
In SELinux policy, there is a possible way of inferring which websites are being opened in the browser due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2022-20340
In SELinux policy, there is a possible way of inferring which websites are being opened in the browser due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2022-20340
CVE-2022-20340 affects Android 13 with a missing permission check in SELinux policy that can let a local attacker infer which websites are opened in the browser, causing a local information disclosure without additional privileges or user interaction. Root cause: improper SELinux policy allows in...