CVE-2022-20475
- EPSS 0.13%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 15:15:58
In test of ResetTargetTaskHelper.java, there is a possible hijacking of any app which sets allowTaskReparenting="true" due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User int...
CVE-2022-20476
- EPSS 0.16%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 18:15:44
In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an infinite reboot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interactio...
CVE-2022-20477
- EPSS 0.14%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 18:15:45
In shouldHideNotification of KeyguardNotificationVisibilityProvider.kt, there is a possible way to show hidden notifications due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges ne...
CVE-2022-20478
- EPSS 0.17%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 18:15:46
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...
CVE-2022-20479
- EPSS 0.17%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 18:15:46
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...
CVE-2022-20480
- EPSS 0.17%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 20:15:20
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...
CVE-2022-20482
- EPSS 0.16%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 20:15:20
In createNotificationChannel of NotificationManager.java, there is a possible way to make the device unusable and require factory reset due to resource exhaustion. This could lead to local denial of service with no additional execution privileges nee...
CVE-2022-20483
- EPSS 0.61%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 20:15:20
In several functions that parse avrc response in avrc_pars_ct.cc and related files, there are possible out of bounds reads due to integer overflows. This could lead to remote information disclosure with no additional execution privileges needed. User...
CVE-2022-20484
- EPSS 0.17%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 20:15:20
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...
CVE-2022-20485
- EPSS 0.12%
- Veröffentlicht 13.12.2022 16:15:16
- Zuletzt bearbeitet 22.04.2025 20:15:21
In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...