3 matches found
CVE-2022-20126
In setScanMode of AdapterService.java, there is a possible way to enable Bluetooth discovery mode without user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product...
CVE-2022-20126
In setScanMode of AdapterService.java, there is a possible way to enable Bluetooth discovery mode without user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product...
CVE-2022-20126
The vulnerability CVE-2022-20126 affects Android (Android-10 to Android-12L) via the Bluetooth stack: in AdapterService.java, setScanMode can enable Bluetooth discovery mode without user interaction due to a missing permission check. This creates local elevation of privilege with user execution p...