PUB-A-213172664

See a problem?

Import Source

https://storage.googleapis.com/android-osv/PUB-A-213172664.json

JSON Data

https://api.osv.dev/v1/vulns/PUB-A-213172664

Aliases

A-213172664
CVE-2022-20195

Published

2022-06-01T00:00:00Z

Modified

2026-01-02T16:32:32.188921Z

Summary

[none]

Details

In the keystore library, there is a possible prevention of access to system Settings due to unsafe deserialization. This could lead to local denial of service with User execution privileges needed. User interaction is needed for exploitation.

References

https://source.android.com/security/bulletin/2022-06-01

Affected packages

Android / platform/system/security

Package

Name: platform/system/security

Affected ranges

Type: ECOSYSTEM
Events: Introduced

12L:0

Fixed

12L:2022-06-01

Affected versions

Other

12L

Ecosystem specific

{
    "types": [
        "DoS"
    ],
    "severity": "Moderate",
    "fixes": [
        "https://android.googlesource.com/platform/system/security/+/4a6ba6e8cd12551375fda1a3a8050675563a4b65",
        "https://android.googlesource.com/platform/system/security/+/d647b4a5b3d7a2e7e4f168dfd9a7354d077db26c"
    ],
    "spl": "2022-06-01"
}