CVE-2022-20452

HIGH

Android <13 - Local Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-20452. PoCs published by michalbednarski.

AI-analyzed exploit summary This repository contains a working proof-of-concept exploit for CVE-2022-20452, leveraging a Parcelable mismatch vulnerability in Android 13 to achieve remote code execution in system processes. The exploit demonstrates how to leak Binder objects and execute shellcode in privileged contexts.

Description

In initializeFromParcelLocked of BaseBundle.java, there is a possible method arbitrary code execution due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-240138318

Exploits (1)

nomisec WORKING POC 339 stars
by michalbednarski · poc
https://github.com/michalbednarski/LeakValue

This repository contains a working proof-of-concept exploit for CVE-2022-20452, leveraging a Parcelable mismatch vulnerability in Android 13 to achieve remote code execution in system processes. The exploit demonstrates how to leak Binder objects and execute shellcode in privileged contexts.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Android 13
No auth needed
Prerequisites: Android 13 device · Access to install and run the exploit app
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 7.8
EPSS 0.0037
EPSS Percentile 28.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-276
Status published
Products (1)
google/android 13.0
Published Nov 08, 2022
Tracked Since Feb 18, 2026