Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:19 |
CVE-2022-20558 (lien direct) |
In registerReceivers of DeviceCapabilityListener.java, there is a possible way to change preferred TTY mode due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-236264289 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:19 |
CVE-2022-20575 (lien direct) |
In read_ppmpu_info of drm_fw.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-237585040References: N/A |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:19 |
CVE-2022-20568 (lien direct) |
In (TBD) of (TBD), there is a possible way to corrupt kernel memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-220738351References: Upstream kernel |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:19 |
CVE-2022-20563 (lien direct) |
In TBD of ufdt_convert, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-242067561References: N/A |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20553 (lien direct) |
In onCreate of LogAccessDialogActivity.java, there is a possible way to bypass a permission check due to a tapjacking/overlay attack. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-244155265 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20552 (lien direct) |
In btif_a2dp_sink_command_ready of btif_a2dp_sink.cc, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-243922806 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20549 (lien direct) |
In authToken2AidlVec of KeyMintUtils.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-242702451 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20555 (lien direct) |
In ufdt_get_node_by_path_len of ufdt_convert.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-246194233 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20538 (lien direct) |
In getSmsRoleHolder of RoleService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-235601770 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20546 (lien direct) |
In getCurrentConfigImpl of Effect.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-240266798 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20547 (lien direct) |
In multiple functions of AdapterService.java, there is a possible way to manipulate Bluetooth state due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-240301753 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20556 (lien direct) |
In launchConfigNewNetworkFragment of NetworkProviderSettings.java, there is a possible way for the guest user to add a new WiFi network due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-246301667 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20544 (lien direct) |
In onOptionsItemSelected of ManageApplications.java, there is a possible bypass of profile owner restrictions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-238745070 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20539 (lien direct) |
In parameterToHal of Effect.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the audio server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-237291425 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20536 (lien direct) |
In registerBroadcastReceiver of RcsService.java, there is a possible way to change preferred TTY mode due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-235100180 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20535 (lien direct) |
In registerLocalOnlyHotspotSoftApCallback of WifiManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-233605242 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20550 (lien direct) |
In Multiple Locations, there is a possibility to launch arbitrary protected activities due to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-242845514 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20545 (lien direct) |
In bindArtworkAndColors of MediaControlPanel.java, there is a possible way to crash the phone due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-239368697 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20554 (lien direct) |
In removeEventHubDevice of InputDevice.cpp, there is a possible OOB read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-245770596 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20537 (lien direct) |
In createDialog of WifiScanModeActivity.java, there is a possible way for a Guest user to enable location-sensitive settings due to a missing permission check. This could lead to local escalation of privilege from the Guest user with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-235601169 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20540 (lien direct) |
In SurfaceFlinger::doDump of SurfaceFlinger.cpp, there is possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-237291506 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20543 (lien direct) |
In multiple locations, there is a possible display crash loop due to improper input validation. This could lead to local denial of service with system execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-238178261 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20541 (lien direct) |
In phNxpNciHal_ioctl of phNxpNciHal.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-238083126 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:18 |
CVE-2022-20548 (lien direct) |
In setParameter of EqualizerEffect.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-240919398 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20529 (lien direct) |
In multiple locations of WifiDialogActivity.java, there is a possible limited lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege in wifi settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-231583603 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20521 (lien direct) |
In sdpu_find_most_specific_service_uuid of sdp_utils.cc, there is a possible way to crash Bluetooth due to a missing null check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227203684 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20517 (lien direct) |
In getMessagesByPhoneNumber of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-224769956 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20520 (lien direct) |
In onCreate of various files, there is a possible tapjacking/overlay attack. This could lead to local escalation of privilege or denial of server with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227203202 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20522 (lien direct) |
In getSlice of ProviderModelSlice.java, there is a missing permission check. This could lead to local escalation of privilege from the guest user with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227470877 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20516 (lien direct) |
In rw_t3t_act_handle_check_ndef_rsp of rw_t3t.cc, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-224002331 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20524 (lien direct) |
In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-228523213 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20526 (lien direct) |
In CanvasContext::draw of CanvasContext.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-229742774 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20525 (lien direct) |
In enforceVisualVoicemailPackage of PhoneInterfaceManager.java, there is a possible leak of visual voicemail package name due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-229742768 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20533 (lien direct) |
In getSlice of WifiSlice.java, there is a possible way to connect a new WiFi network from the guest mode due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-232798363 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20528 (lien direct) |
In findParam of HevcUtils.cpp there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-230172711 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20523 (lien direct) |
In IncFs_GetFilledRangesStartingFrom of incfs.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-228222508 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20530 (lien direct) |
In strings.xml, there is a possible permission bypass due to a misleading string. This could lead to remote information disclosure of call logs with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-231585645 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20527 (lien direct) |
In HalCoreCallback of halcore.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure from the NFC firmware with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-229994861 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20519 (lien direct) |
In onCreate of AddAppNetworksActivity.java, there is a possible way for a guest user to configure WiFi networks due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-224772678 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20518 (lien direct) |
In query of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-224770203 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20515 (lien direct) |
In onPreferenceClick of AccountTypePreferenceLoader.java, there is a possible way to retrieve protected files from the Settings app due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-220733496 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20531 (lien direct) |
In placeCall of TelecomManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-231988638 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:17 |
CVE-2022-20514 (lien direct) |
In acquireFabricatedOverlayIterator, nextFabricatedOverlayInfos, and releaseFabricatedOverlayIterator of Idmap2Service.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-245727875 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20506 (lien direct) |
In onCreate of WifiDialogActivity.java, there is a missing permission check. This could lead to local escalation of privilege from a guest user with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-226133034 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20503 (lien direct) |
In onCreate of WifiDppConfiguratorActivity.java, there is a possible way for a guest user to add a WiFi configuration due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-224772890 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20505 (lien direct) |
In openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitationProduct: AndroidVersions: Android-13Android ID: A-225981754 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20509 (lien direct) |
In mapGrantorDescr of MessageQueueBase.h, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-244713317 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20507 (lien direct) |
In onMulticastListUpdateNotificationReceived of UwbEventManager.java, there is a possible arbitrary code execution due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-246649179 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20511 (lien direct) |
In getNearbyAppStreamingPolicy of DevicePolicyManagerService.java, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-235821829 |
Guideline
|
|
|
![CVE.webp](./Ressources/img/CVE.webp) |
2022-12-16 16:15:16 |
CVE-2022-20504 (lien direct) |
In multiple locations of DreamManagerService.java, there is a missing permission check. This could lead to local escalation of privilege and dismissal of system dialogs with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-225878553 |
Guideline
|
|
|