Google Android vulnerabilities

CVE-2022-23432 [MEDIUM] CWE-20 CVE-2022-23432: An improper input validation in SMC_SRPMB_WSM handler of RPMB ldfw prior to SMR Feb-2022 Release 1 a An improper input validation in SMC_SRPMB_WSM handler of RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution.

CVE-2022-23426 [MEDIUM] CWE-94 CVE-2022-23426: A vulnerability using PendingIntent in DeX Home and DeX for PC prior to SMR Feb-2022 Release 1 allow A vulnerability using PendingIntent in DeX Home and DeX for PC prior to SMR Feb-2022 Release 1 allows attackers to access files with system privilege.

CVE-2022-23431 [MEDIUM] CWE-120 CVE-2022-23431: An improper boundary check in RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory writ An improper boundary check in RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution.

CVE-2022-24001 [MEDIUM] CWE-200 CVE-2022-24001: Information disclosure vulnerability in Edge Panel prior to Android S(12) allows physical attackers Information disclosure vulnerability in Edge Panel prior to Android S(12) allows physical attackers to access screenshot in clipboard via Edge Panel.

CVE-2021-0524 [MEDIUM] CWE-203 CVE-2021-0524: In isServiceDistractionOptimized of CarPackageManagerService.java, there is a possible disclosure of In isServiceDistractionOptimized of CarPackageManagerService.java, there is a possible disclosure of installed packages due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android I

CVE-2022-23999 [LOW] CWE-20 CVE-2022-23999: PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local at PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent.

CVE-2022-24000 [LOW] CWE-20 CVE-2022-24000: PendingIntent hijacking vulnerability in DataUsageReminderReceiver prior to SMR Feb-2022 Release 1 a PendingIntent hijacking vulnerability in DataUsageReminderReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent.

CVE-2022-20040 [HIGH] CWE-787 CVE-2022-20040: In power_hal_manager_service, there is a possible permission bypass due to a stack-based buffer over In power_hal_manager_service, there is a possible permission bypass due to a stack-based buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06219150; Issue ID: ALPS06219150.

CVE-2022-20026 [HIGH] CWE-787 CVE-2022-20026: In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126827; Issue ID: ALPS06126827.

CVE-2022-20027 [HIGH] CWE-787 CVE-2022-20027: In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126826; Issue ID: ALPS06126826.

CVE-2022-20045 [HIGH] CWE-416 CVE-2022-20045: In Bluetooth, there is a possible service crash due to a use after free. This could lead to local es In Bluetooth, there is a possible service crash due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126820; Issue ID: ALPS06126820.

CVE-2022-20043 [HIGH] CWE-862 CVE-2022-20043: In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This co In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06148177; Issue ID: ALPS06148177.

CVE-2022-20024 [HIGH] CWE-862 CVE-2022-20024: In system service, there is a possible permission bypass due to a missing permission check. This cou In system service, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06219064; Issue ID: ALPS06219064.

CVE-2022-20028 [HIGH] CWE-787 CVE-2022-20028: In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06198663; Issue ID: ALPS06198663.

CVE-2022-20031 [HIGH] CWE-416 CVE-2022-20031: In fb driver, there is a possible memory corruption due to a use after free. This could lead to loca In fb driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05850708; Issue ID: ALPS05850708.

CVE-2022-20025 [HIGH] CWE-787 CVE-2022-20025: In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126832; Issue ID: ALPS06126832.

CVE-2022-20044 [HIGH] CWE-416 CVE-2022-20044: In Bluetooth, there is a possible service crash due to a use after free. This could lead to local es In Bluetooth, there is a possible service crash due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06126814; Issue ID: ALPS06126814.

CVE-2022-20041 [HIGH] CWE-862 CVE-2022-20041: In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This co In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108596; Issue ID: ALPS06108596.

CVE-2022-20036 [MEDIUM] CWE-20 CVE-2022-20036: In ion driver, there is a possible information disclosure due to an incorrect bounds check. This cou In ion driver, there is a possible information disclosure due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06171689; Issue ID: ALPS06171689.

CVE-2022-20033 [MEDIUM] CWE-125 CVE-2022-20033: In camera driver, there is a possible out of bounds read due to an incorrect bounds check. This coul In camera driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862973; Issue ID: ALPS05862973.