ASB-A-206986392

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-206986392.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-206986392
Aliases
  • A-206986392
  • CVE-2022-20137
Published
2022-06-01T00:00:00Z
Modified
2024-08-07T19:29:43.087345Z
Summary
[Multiple users can share WI-FI and change WI-FI network]
Details

In onCreateContextMenu of NetworkProviderSettings.java, there is a possible way for non-owner users to change WiFi settings due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.

References

Affected packages

Android / platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L-next:0
Fixed
12L-next:2022-06-01

Affected versions

Other

12L-next

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1086.0,
                "function_hash": "13568636868366417716505357970160124569"
            },
            "id": "ASB-A-206986392-0ce88424",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/876f691377ced7aa94a291b04de823ae20a36d47",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java",
                "function": "onCreateContextMenu"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "length": 192.0,
                "function_hash": "149372703456323609643363438701781236245"
            },
            "id": "ASB-A-206986392-95d1e200",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/876f691377ced7aa94a291b04de823ae20a36d47",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java",
                "function": "onCreate"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "72759330091169440706046299701103761556",
                    "96745820388189669581616755126377647186",
                    "87865666946076029588051594736439032788",
                    "252737809419705322495725229434262881927",
                    "218762167545415410902944374971461231256",
                    "314399651843304487252640965609731820434",
                    "280839746220081182866774948504646794383",
                    "1350036305887135929253374320924872697",
                    "81064503419041583093436632649403130594",
                    "272881835193739693634818982597145849953",
                    "191515802057777236387234656598664993193",
                    "311905520897081873321127502738113647701",
                    "119868343521868856342776231674499868491",
                    "47841180790468053334702365566593551732",
                    "248212345293161860846198535629283111794",
                    "92469899287092226165029592769166299941",
                    "339044967354515491866951749538680764724",
                    "15066870438961620317005223572938971177",
                    "269506549092011647355447078539577161646",
                    "237170114034437929832988191374660292602",
                    "247333107914320633484037729534948217010",
                    "164371200764742891788193256042550722578",
                    "154688404653072709596492445340016998985",
                    "179922275559886036550135941934979487273",
                    "92173793544998893813557468613625537171",
                    "314326959141032461913909579284862231984"
                ]
            },
            "id": "ASB-A-206986392-cf420be2",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/876f691377ced7aa94a291b04de823ae20a36d47",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 96.0,
                "function_hash": "175600120082974199279319441403192683972"
            },
            "id": "ASB-A-206986392-d5c05bee",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/876f691377ced7aa94a291b04de823ae20a36d47",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/wifi/details/WifiNetworkDetailsFragment.java",
                "function": "onCreate"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "182874484485167770165689928578842610386",
                    "151184599949721964488306171914746781688",
                    "129207148259000092113158940051063161974",
                    "27119134391225462237622198997270335766"
                ]
            },
            "id": "ASB-A-206986392-db4859dd",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/876f691377ced7aa94a291b04de823ae20a36d47",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/wifi/details/WifiNetworkDetailsFragment.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/876f691377ced7aa94a291b04de823ae20a36d47"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}

Android / platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2022-06-01

Affected versions

Other

12

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 192.0,
                "function_hash": "149372703456323609643363438701781236245"
            },
            "id": "ASB-A-206986392-25f7a261",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java",
                "function": "onCreate"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "72759330091169440706046299701103761556",
                    "96745820388189669581616755126377647186",
                    "87865666946076029588051594736439032788",
                    "252737809419705322495725229434262881927",
                    "218762167545415410902944374971461231256",
                    "314399651843304487252640965609731820434",
                    "280839746220081182866774948504646794383",
                    "1350036305887135929253374320924872697",
                    "81064503419041583093436632649403130594",
                    "272881835193739693634818982597145849953",
                    "191515802057777236387234656598664993193",
                    "311905520897081873321127502738113647701",
                    "119868343521868856342776231674499868491",
                    "47841180790468053334702365566593551732",
                    "248212345293161860846198535629283111794",
                    "26115151735908413201975903865781592943",
                    "216161841127094821162754238231683176768",
                    "281305200577974881795317529401554303009",
                    "232598706504478546211884083260189565560",
                    "237170114034437929832988191374660292602",
                    "247333107914320633484037729534948217010",
                    "164371200764742891788193256042550722578",
                    "154688404653072709596492445340016998985",
                    "179922275559886036550135941934979487273",
                    "92173793544998893813557468613625537171",
                    "314326959141032461913909579284862231984"
                ]
            },
            "id": "ASB-A-206986392-8499b819",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 1041.0,
                "function_hash": "74675235477422270519684013993988859645"
            },
            "id": "ASB-A-206986392-a35002bc",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java",
                "function": "onCreateContextMenu"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}

Android / platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2022-06-01

Affected versions

Other

12L

Ecosystem specific

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1041.0,
                "function_hash": "74675235477422270519684013993988859645"
            },
            "id": "ASB-A-206986392-739dd3de",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java",
                "function": "onCreateContextMenu"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "72759330091169440706046299701103761556",
                    "96745820388189669581616755126377647186",
                    "87865666946076029588051594736439032788",
                    "252737809419705322495725229434262881927",
                    "218762167545415410902944374971461231256",
                    "314399651843304487252640965609731820434",
                    "280839746220081182866774948504646794383",
                    "1350036305887135929253374320924872697",
                    "81064503419041583093436632649403130594",
                    "272881835193739693634818982597145849953",
                    "191515802057777236387234656598664993193",
                    "311905520897081873321127502738113647701",
                    "119868343521868856342776231674499868491",
                    "47841180790468053334702365566593551732",
                    "248212345293161860846198535629283111794",
                    "26115151735908413201975903865781592943",
                    "216161841127094821162754238231683176768",
                    "281305200577974881795317529401554303009",
                    "232598706504478546211884083260189565560",
                    "237170114034437929832988191374660292602",
                    "247333107914320633484037729534948217010",
                    "164371200764742891788193256042550722578",
                    "154688404653072709596492445340016998985",
                    "179922275559886036550135941934979487273",
                    "92173793544998893813557468613625537171",
                    "314326959141032461913909579284862231984"
                ]
            },
            "id": "ASB-A-206986392-d6ee3214",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java"
            },
            "signature_type": "Line"
        },
        {
            "digest": {
                "length": 192.0,
                "function_hash": "149372703456323609643363438701781236245"
            },
            "id": "ASB-A-206986392-e87ec892",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "src/com/android/settings/network/NetworkProviderSettings.java",
                "function": "onCreate"
            },
            "signature_type": "Function"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/4c4a1f58c16d05c96dafae1047b44fe6e6a9a8c0"
    ],
    "spl": "2022-06-01",
    "severity": "High",
    "types": [
        "EoP"
    ]
}