CVE Vulnerabilities

CVE-2022-23999

Published: Feb 11, 2022 | Modified: Feb 22, 2022
CVSS 3.x
3.3
LOW
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent.

Affected Software

Name Vendor Start Version End Version
Android Google 10.0 10.0
Android Google 11.0 11.0
Android Google 12.0 12.0

References