2 matches found
CVE-2022-2390
CVE-2022-2390 affects the Google Play Services SDK. The issue stems from the mutability flag on PendingIntents passed to the Notification service, present in SDKs prior to version 18.0.2. This misconfiguration can allow an attacker to access all non-exported providers and/or other providers for w...
CVE-2022-1799
CVE-2022-1799 affects the Google Play services SDK, specifically the play-services-basement component. The issue is an incorrect signature trust where a debug version of Google Play services is trusted by the SDK for devices that are non-GMS, enabling potential trust bypass. Public references con...