In DA, there is a possible permission bypass due to an incorrect status check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08355514; Issue ID: ALPS08355514.
Weakness
[PLANNED FOR DEPRECATION. SEE MAINTENANCE NOTES AND CONSIDER CWE-252, CWE-248, OR CWE-1069.] Ignoring exceptions and other error conditions may allow an attacker to induce unexpected behavior unnoticed.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Yocto | Linuxfoundation | 3.3 (including) | 3.3 (including) |
| Yocto | Linuxfoundation | 4.0 (including) | 4.0 (including) |
| Rdk-b | Rdkcentral | 2022q3 (including) | 2022q3 (including) |
| Android | 12.0 (including) | 12.0 (including) | |
| Android | 13.0 (including) | 13.0 (including) | |
| Android | 14.0 (including) | 14.0 (including) | |
| Android | 15.0 (including) | 15.0 (including) | |
| Openwrt | Openwrt | 19.07.0 (including) | 19.07.0 (including) |
| Openwrt | Openwrt | 21.02.0 (including) | 21.02.0 (including) |