CVE-2022-39883 | Severity.io

Description

Improper authorization vulnerability in StorageManagerService prior to SMR Nov-2022 Release 1 allows local attacker to call privileged API.

Related CPE's

google

android

References

Vendor Advisory

Vendor Advisory

Weaknesses

Secondary

CWE-285

Primary

NVD-CWE-Other

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

4 · Medium

Information

Source identifier

Vulnerability status

Modified

Published

2022-11-09T21:15:18.073Z

3 years ago

Last modified

2024-11-21T06:18:27.447Z

1 year ago