In bindArtworkAndColors of MediaControlPanel.java, there is a possible way to crash the phone due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-239368697
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/pixel/2022-12-01 | Patch Vendor Advisory |
Configurations
History
No history.
Information
Published : 2022-12-16 16:15
Updated : 2024-02-28 19:51
NVD link : CVE-2022-20545
Mitre link : CVE-2022-20545
CVE.ORG link : CVE-2022-20545
JSON object : View
Products Affected
- android
CWE
CWE-20
Improper Input Validation