CVE-2022-21748
CVE-2022-21748 affects MediaTek telephony on MediaTek chips. The root cause is a missing permission check in the telephony path, enabling local information disclosure. Exploitation would require user interaction, with the attacker already at User execution privileges; no remote access. Patch ALPS...