ASB-A-228450811

See a problem?

Import Source

https://storage.googleapis.com/android-osv/ASB-A-228450811.json

JSON Data

https://api.osv.dev/v1/vulns/ASB-A-228450811

Aliases

A-228450811
CVE-2022-20347

Published

2022-08-01T00:00:00Z

Modified

2026-04-17T15:55:28.020024Z

Summary

[none]

Details

In onAttach of ConnectedDeviceDashboardFragment.java, there is a possible permission bypass due to a confused deputy. This could lead to remote escalation of privilege in Bluetooth settings with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

10:0

Fixed

10:2022-08-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 856.0,
                "function_hash": "13919919985601905534216584854032341268"
            },
            "id": "ASB-A-228450811-34934f0e",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/06139d3ffc37cb4b7974f95ccf08512c6fcad26d",
            "target": {
                "function": "onAttach",
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "54217086981814180212189485121760539851",
                    "261739059670434564785450967806299967903",
                    "41067553375884720821611857407055261273",
                    "137837912929574767692735686410794945957",
                    "56357263559963899663107324463737726573",
                    "9114155055727489661803632310053793189",
                    "94018531324307120263608100370258872334",
                    "6514451304108629292662999225639745043",
                    "135791731730466980643930382946287805964",
                    "234462997388563845605361232523379613206",
                    "274445856122569385262686860387721320635",
                    "331372866387346569117615521148814378898",
                    "322746544384854418103538752332004024739",
                    "221639065747129932344001369290868713095",
                    "248215125813645792421551754924777187308",
                    "285427982986700501602679183363004467168"
                ]
            },
            "id": "ASB-A-228450811-7a20190f",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/06139d3ffc37cb4b7974f95ccf08512c6fcad26d",
            "target": {
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/06139d3ffc37cb4b7974f95ccf08512c6fcad26d"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-08-01",
    "severity": "High"
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-228450811.json"

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

11:0

Fixed

11:2022-08-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "54217086981814180212189485121760539851",
                    "261739059670434564785450967806299967903",
                    "41067553375884720821611857407055261273",
                    "137837912929574767692735686410794945957",
                    "56357263559963899663107324463737726573",
                    "9114155055727489661803632310053793189",
                    "94018531324307120263608100370258872334",
                    "6514451304108629292662999225639745043",
                    "135791731730466980643930382946287805964",
                    "234462997388563845605361232523379613206",
                    "274445856122569385262686860387721320635",
                    "331372866387346569117615521148814378898",
                    "322746544384854418103538752332004024739",
                    "221639065747129932344001369290868713095",
                    "142489513983106137869263719183573711648",
                    "124324795784551632906599239120494070203"
                ]
            },
            "id": "ASB-A-228450811-7f33b989",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/c44b6fed73668dcdee066ea125e93e48dc31d3ee",
            "target": {
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        },
        {
            "digest": {
                "length": 807.0,
                "function_hash": "143352052092941315242526665037436373403"
            },
            "id": "ASB-A-228450811-a5e9cd84",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/c44b6fed73668dcdee066ea125e93e48dc31d3ee",
            "target": {
                "function": "onAttach",
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/c44b6fed73668dcdee066ea125e93e48dc31d3ee"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-08-01",
    "severity": "High"
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-228450811.json"

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12:0

Fixed

12:2022-08-01

Affected versions

Other

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 807.0,
                "function_hash": "143352052092941315242526665037436373403"
            },
            "id": "ASB-A-228450811-5bcd8c13",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/1c4142e1aea6236b8058377ecdc9d0575fca68ee",
            "target": {
                "function": "onAttach",
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "54217086981814180212189485121760539851",
                    "261739059670434564785450967806299967903",
                    "41067553375884720821611857407055261273",
                    "137837912929574767692735686410794945957",
                    "56357263559963899663107324463737726573",
                    "9114155055727489661803632310053793189",
                    "94018531324307120263608100370258872334",
                    "6514451304108629292662999225639745043",
                    "135791731730466980643930382946287805964",
                    "234462997388563845605361232523379613206",
                    "274445856122569385262686860387721320635",
                    "331372866387346569117615521148814378898",
                    "322746544384854418103538752332004024739",
                    "221639065747129932344001369290868713095",
                    "142489513983106137869263719183573711648",
                    "124324795784551632906599239120494070203"
                ]
            },
            "id": "ASB-A-228450811-73cbe7bc",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/1c4142e1aea6236b8058377ecdc9d0575fca68ee",
            "target": {
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/1c4142e1aea6236b8058377ecdc9d0575fca68ee"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-08-01",
    "severity": "High"
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-228450811.json"

platform/packages/apps/Settings

Package

Name: platform/packages/apps/Settings

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12L:0

Fixed

12L:2022-08-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 807.0,
                "function_hash": "143352052092941315242526665037436373403"
            },
            "id": "ASB-A-228450811-146850ef",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/8bae22248940fe0549c7e6cfab07948f1e4f6b37",
            "target": {
                "function": "onAttach",
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "54217086981814180212189485121760539851",
                    "261739059670434564785450967806299967903",
                    "41067553375884720821611857407055261273",
                    "137837912929574767692735686410794945957",
                    "56357263559963899663107324463737726573",
                    "9114155055727489661803632310053793189",
                    "94018531324307120263608100370258872334",
                    "6514451304108629292662999225639745043",
                    "135791731730466980643930382946287805964",
                    "234462997388563845605361232523379613206",
                    "274445856122569385262686860387721320635",
                    "331372866387346569117615521148814378898",
                    "322746544384854418103538752332004024739",
                    "221639065747129932344001369290868713095",
                    "142489513983106137869263719183573711648",
                    "124324795784551632906599239120494070203"
                ]
            },
            "id": "ASB-A-228450811-83067314",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/8bae22248940fe0549c7e6cfab07948f1e4f6b37",
            "target": {
                "file": "src/com/android/settings/connecteddevice/ConnectedDeviceDashboardFragment.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/8bae22248940fe0549c7e6cfab07948f1e4f6b37"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-08-01",
    "severity": "High"
}

Database specific

source

"https://storage.googleapis.com/android-osv/ASB-A-228450811.json"