cbcvebase.
CVE-2022-39912
published 2022-12-08

CVE-2022-39912: Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to…

PriorityP49low3.3CVSS 3.1
AVLACLPRLUINSUCNILAN
EPSS
0.08%
0.3th percentile
Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder.

Affected

2 ranges
VendorProductVersion rangeFixed in
googleandroid< 13.013.0
samsung_mobilesamsung_mobile_devices>= unspecified < Android T(13)Android T(13)
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.