3 matches found
CVE-2022-20392
In declareDuplicatePermission of ParsedPermissionUtils.java, there is a possible way to obtain a dangerous permission without user consent due to improper input validation. This could lead to local escalation of privilege during app installation or upgrade with no additional execution privileges...
CVE-2022-20392
In declareDuplicatePermission of ParsedPermissionUtils.java, there is a possible way to obtain a dangerous permission without user consent due to improper input validation. This could lead to local escalation of privilege during app installation or upgrade with no additional execution privileges...
CVE-2022-20392
CVE-2022-20392: Android framework flaw in declareDuplicatePermission (ParsedPermissionUtils.java) could allow obtaining a dangerous permission without user consent due to input validation issues, enabling local privilege escalation during app installation or upgrade with no extra execution privil...