2 matches found
CVE-2022-20252
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20252
CVE-2022-20252 is a vulnerability in Android 13’s PackageManager where an attacker can deduce whether an app is installed without query permissions due to a side-channel information disclosure. This enables local information disclosure with no extra execution privileges required; exploitation req...