Platform Packages Apps Messaging vulnerabilities
2 known vulnerabilities affecting platform/packages_apps_messaging.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
UNKNOWN2
Vulnerabilities
Page 1 of 1
CVE-2022-20205UNKNOWN≥ 12L-next:0, < 12L-next:2022-06-01≥ 12L:0, < 12L:2022-06-012022-06-01
CVE-2022-20205 CVE-2022-20205: In isFileUri of FileUtil
In isFileUri of FileUtil.java, there is a possible way to bypass the check for a file:// scheme due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2021-0973UNKNOWN≥ 12:0, < 12:2021-12-012021-12-01
CVE-2021-0973 CVE-2021-0973: In isFileUri of UriUtil
In isFileUri of UriUtil.java, there is a possible way to bypass ignoring file://URI attachment due to improper handling of case sensitivity. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
osv