ASB-A-246933359

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-246933359.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-246933359
Aliases
Published
2022-12-01T00:00:00Z
Modified
2026-04-21T15:25:42.831358Z
Summary
[none]
Details

In onCreate of EnableAccountPreferenceActivity.java, there is a possible way to mislead the user into enabling a malicious phone account due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.

References

Affected packages

Android
platform/packages/services/Telecomm

Package

Name
platform/packages/services/Telecomm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2022-12-01

Affected versions

Other
10

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 245.0,
                "function_hash": "154270236169330912437872144573544089928"
            },
            "id": "ASB-A-246933359-2d747a16",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "function": "onCreate",
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "320289821939055675549952624027794498453",
                    "96961415491038917953009970649486956067",
                    "70238020157878442178950549376738510749",
                    "62743758544484059513720788751842644535",
                    "285738201064597834006436556479051549380",
                    "319483709314350051125391354452465839608",
                    "218636688842431018377560863361731694344",
                    "300316977321693419332182848524026739926"
                ]
            },
            "id": "ASB-A-246933359-fd099c12",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-12-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-246933359.json"
platform/packages/services/Telecomm

Package

Name
platform/packages/services/Telecomm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2022-12-01

Affected versions

Other
11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 245.0,
                "function_hash": "154270236169330912437872144573544089928"
            },
            "id": "ASB-A-246933359-b528d839",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "function": "onCreate",
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "320289821939055675549952624027794498453",
                    "96961415491038917953009970649486956067",
                    "70238020157878442178950549376738510749",
                    "62743758544484059513720788751842644535",
                    "285738201064597834006436556479051549380",
                    "319483709314350051125391354452465839608",
                    "218636688842431018377560863361731694344",
                    "300316977321693419332182848524026739926"
                ]
            },
            "id": "ASB-A-246933359-f71949af",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-12-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-246933359.json"
platform/packages/services/Telecomm

Package

Name
platform/packages/services/Telecomm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2022-12-01

Affected versions

Other
12

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "320289821939055675549952624027794498453",
                    "96961415491038917953009970649486956067",
                    "70238020157878442178950549376738510749",
                    "62743758544484059513720788751842644535",
                    "285738201064597834006436556479051549380",
                    "319483709314350051125391354452465839608",
                    "218636688842431018377560863361731694344",
                    "300316977321693419332182848524026739926"
                ]
            },
            "id": "ASB-A-246933359-009398e8",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        },
        {
            "digest": {
                "length": 245.0,
                "function_hash": "154270236169330912437872144573544089928"
            },
            "id": "ASB-A-246933359-8914fb9c",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "function": "onCreate",
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-12-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-246933359.json"
platform/packages/services/Telecomm

Package

Name
platform/packages/services/Telecomm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2022-12-01

Affected versions

Other
12L

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 245.0,
                "function_hash": "154270236169330912437872144573544089928"
            },
            "id": "ASB-A-246933359-13317206",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "function": "onCreate",
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "320289821939055675549952624027794498453",
                    "96961415491038917953009970649486956067",
                    "70238020157878442178950549376738510749",
                    "62743758544484059513720788751842644535",
                    "285738201064597834006436556479051549380",
                    "319483709314350051125391354452465839608",
                    "218636688842431018377560863361731694344",
                    "300316977321693419332182848524026739926"
                ]
            },
            "id": "ASB-A-246933359-ae6a4686",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-12-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-246933359.json"
platform/packages/services/Telecomm

Package

Name
platform/packages/services/Telecomm

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2022-12-01

Affected versions

Other
13

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 245.0,
                "function_hash": "154270236169330912437872144573544089928"
            },
            "id": "ASB-A-246933359-344f4600",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "function": "onCreate",
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "320289821939055675549952624027794498453",
                    "96961415491038917953009970649486956067",
                    "70238020157878442178950549376738510749",
                    "62743758544484059513720788751842644535",
                    "285738201064597834006436556479051549380",
                    "319483709314350051125391354452465839608",
                    "218636688842431018377560863361731694344",
                    "300316977321693419332182848524026739926"
                ]
            },
            "id": "ASB-A-246933359-decf1620",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035",
            "target": {
                "file": "src/com/android/server/telecom/settings/EnableAccountPreferenceActivity.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/services/Telecomm/+/a7d57ace5819c4eef340aaf6744ad441d0369035"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2022-12-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-246933359.json"