2 matches found
CVE-2022-20398
In addOrUpdateNetwork of WifiServiceImpl.java, there is a possible way for a guest user to configure Wi-Fi due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2022-20398
CVE-2022-20398 affects Android 13 via addOrUpdateNetwork in WifiServiceImpl.java. A permissions bypass could let a guest user configure Wi‑Fi, enabling local escalation of privilege with User execution privileges needed and no user interaction required. CVSS: LOCAL, HIGH impact (C/H/I/A). Exploit...