In WifiP2pManager, there is a possible toobtain WiFi P2P MAC address without user consent due to missing permission check. This could lead to local information disclosure without additional execution privileges needed. User interaction is not needed forexploitationProduct: AndroidVersions: Android-13Android ID: A-192244925
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/android-13 | Vendor Advisory |
Configurations
History
08 Aug 2023, 14:21
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-862 |
15 Aug 2022, 22:32
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* | |
CWE | CWE-276 | |
First Time |
Google android
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
References | (MISC) https://source.android.com/security/bulletin/android-13 - Vendor Advisory |
12 Aug 2022, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-12 15:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-20312
Mitre link : CVE-2022-20312
CVE.ORG link : CVE-2022-20312
JSON object : View
Products Affected
- android
CWE
CWE-862
Missing Authorization