CVE-2022-42544

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-42544

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-42544.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-42544

Aliases

A-224545390
PUB-A-224545390

Published

2022-12-16T16:15:24.227Z

Modified

2026-03-14T11:56:54.291746Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In getView of AddAppNetworksFragment.java, there is a possible way to mislead the user about network add requests due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-224545390

References

https://source.android.com/security/bulletin/pixel/2022-12-01

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-42544.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "13.0"
            }
        ]
    }
]