CVE-2022-20255 – In SettingsProvider, there is a possible way to read or change the default ringtone due to …

12 August 2022

Vuln ID: CVE-2022-20255

Published: 2022-08-12 15:15:09Z

Description: In SettingsProvider, there is a possible way to read or change the default ringtone due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-222687217

Source: NVD.NIST.GOV

Date:

12 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Network Threats: A Step-by-Step Attack Demonstration25 April 2024
ESET integrates with Arctic Wolf to provide greater security visibility25 April 2024
JudgeO Online Code Editor Flaw Let Attackers Execute Code as Root User25 April 2024
Sublime Security secures $20 million to strengthen cloud email security and visibility25 April 2024
DragonForce Ransomware Group Uses LockBit’s Leaked Builder25 April 2024