2 matches found
CVE-2022-38698
CVE-2022-38698 involves a missing permission check in the messaging service that enables elevation of privilege in the contacts service. The vulnerability is exploitable locally with low privileges and does not require user interaction. The CVSSv3.1 metrics indicate a high impact on confidentiali...
CVE-2022-38698
In messaging service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed...