CVE-2022-20214

In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. Attackers can overlay the toggle button to enable apps to modify system settings without user consent.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-183411210
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-01-26 21:15

Updated : 2024-02-28 19:51


NVD link : CVE-2022-20214

Mitre link : CVE-2022-20214

CVE.ORG link : CVE-2022-20214


JSON object : View

Products Affected

google

  • android
CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames