CVE-2022-20214

Description

In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. Attackers can overlay the toggle button to enable apps to modify system settings without user consent.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-183411210

Related CPE's

ogoogleandroid10.0*******

ogoogleandroid11.0*******

ogoogleandroid12.0*******

References

https://source.android.com/security/bulletin/aaos/2023-01-01

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io