CVE-2022-20432

HIGH

Android - Missing Authorization Leading to Local Privilege Escalation

Title source: llm
STIX 2.1

Description

There is an missing authorization issue in the system service. Since the component does not have permission check and permission protection,, resulting in Local Elevation of privilege.Product: AndroidVersions: Android SoCAndroid ID: A-242221899

References (1)

Core 1

Scores

CVSS v3 7.8
EPSS 0.0015
EPSS Percentile 4.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-862
Status published
Products (1)
google/android
Published Oct 11, 2022
Tracked Since Feb 18, 2026