CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20303
https://notcve.org/view.php?id=CVE-2022-20303
11 Aug 2022 — In ContentService, there is a possible way to determine if an account is on the device without GET_ACCOUNTS permission due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-200573021 En ContentService, es posible determinar si una cuenta está en el dispositivo sin permiso GET_ACCOUNTS debido a una falta de comprobación de permisos. Esto podría ... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20302
https://notcve.org/view.php?id=CVE-2022-20302
11 Aug 2022 — In Settings, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if the attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-200746457 En Settings, se presenta una posible forma de omitir las protecciones de restablecimiento de fábrica debido a un escape de sandbox. Esto podría conllevar a un... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20301
https://notcve.org/view.php?id=CVE-2022-20301
11 Aug 2022 — In Content, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-200956614 En Content, es posible comprobar si una cuenta existe en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de información local con los privilegios d... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20300
https://notcve.org/view.php?id=CVE-2022-20300
11 Aug 2022 — In Content, there is a possible way to check if the given account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-200956588 En Content, es posible comprobar si la cuenta dada existe en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de información local con los pr... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20299
https://notcve.org/view.php?id=CVE-2022-20299
11 Aug 2022 — In ContentService, there is a possible way to check if the given account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-201415895 En ContentService, es posible comprobar si la cuenta dada se presenta en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de informaci... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20298
https://notcve.org/view.php?id=CVE-2022-20298
11 Aug 2022 — In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-201416182 En ContentService, se presenta una posible forma de comprobar si una cuenta existe en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a la divulgación de info... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20297
https://notcve.org/view.php?id=CVE-2022-20297
11 Aug 2022 — In Settings, there is a possible way to bypass factory reset protections due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-201561699 En Settings, se presenta una posible forma de omitir las protecciones de restablecimiento de fábrica debido a un error lógico en el código. Esto podría conllevar a una escalada local de privilegios si... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20296
https://notcve.org/view.php?id=CVE-2022-20296
11 Aug 2022 — In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-201794303 En ContentService, es posible comprobar si una cuenta existe en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de información local con los... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20295
https://notcve.org/view.php?id=CVE-2022-20295
11 Aug 2022 — In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-202160584 En ContentService, se presenta una posible forma de comprobar si una cuenta existe en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de inf... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20294
https://notcve.org/view.php?id=CVE-2022-20294
11 Aug 2022 — In Content, there is a possible way to learn about an account present on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-202160705 En Content, se presenta una posible forma de conocer una cuenta presente en el dispositivo debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de información loca... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •