In Condition of Condition.java, there is a possible way to grant notification access due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-242846316
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/security/bulletin/2023-01-01 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2023-01-24T00:00:00
Updated: 2024-08-03T02:17:52.556Z
Reserved: 2021-10-14T00:00:00
Link: CVE-2022-20493
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-01-26T21:15:28.060
Modified: 2023-08-08T14:22:24.967
Link: CVE-2022-20493
Redhat
No data.