CVE-2022-20341

Summary

In ConnectivityService, there is a possible bypass of network permissions due to a missing permission check. This could lead to local information disclosure of tethering interfaces with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-162952629

Affected Software

VendorProductVersion RangeStatus
n/aAndroidAndroid-13affected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References