CVE-2022-20217
CVE-2022-20217 stems from an authorization weakness in Android’s SprdContactsProvider, enabling a third-party app to trigger an unauthorized broadcast that could delete FDN contacts. Connected sources (PT-2022-4134, NVD entry) confirm the vulnerability in SprdContactsProvider with Android telepho...