Platform Packages Apps Emergencyinfo vulnerabilities
2 known vulnerabilities affecting platform/packages_apps_emergencyinfo.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
UNKNOWN2
Vulnerabilities
Page 1 of 1
CVE-2023-20932UNKNOWN≥ 10:0, < 10:2023-02-01≥ 11:0, < 11:2023-02-01+3 more2023-02-01
CVE-2023-20932 CVE-2023-20932: In onCreatePreferences of EditInfoFragment
In onCreatePreferences of EditInfoFragment.java, there is a possible way to read contacts belonging to other users due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2022-20144UNKNOWN≥ 10:0, < 10:2022-12-01≥ 11:0, < 11:2022-12-01+3 more2022-12-01
CVE-2022-20144 CVE-2022-20144: In cropPhoto of EditUserPhotoController
In cropPhoto of EditUserPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv