CVE-2022-20447
- EPSS 0.28%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:20
In PAN_WriteBuf of pan_api.cc, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploita...
CVE-2022-20448
- EPSS 0.11%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:20
In buzzBeepBlinkLocked of NotificationManagerService.java, there is a possible way to share data across users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...
CVE-2022-20450
- EPSS 0.09%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way to bypass user consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User in...
CVE-2022-20451
- EPSS 0.1%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In onCallRedirectionComplete of CallsManager.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed f...
CVE-2022-20452
- EPSS 0.37%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In initializeFromParcelLocked of BaseBundle.java, there is a possible method arbitrary code execution due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not n...
CVE-2022-20453
- EPSS 0.16%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In update of MmsProvider.java, there is a possible constriction of directory permissions due to a path traversal error. This could lead to local denial of service of SIM recognition with no additional execution privileges needed. User interaction is ...
CVE-2022-20454
- EPSS 0.13%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In fdt_next_tag of fdt.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe...
CVE-2022-20457
- EPSS 0.13%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In getMountModeInternal of StorageManagerService.java, there is a possible prevention of package installation due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User inte...
CVE-2022-20462
- EPSS 0.13%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:21
In phNxpNciHal_write_unlocked of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...
CVE-2022-20465
- EPSS 0.77%
- Veröffentlicht 08.11.2022 22:15:11
- Zuletzt bearbeitet 01.05.2025 16:15:22
In dismiss and related functions of KeyguardHostViewController.java and related files, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges ne...