CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20293
https://notcve.org/view.php?id=CVE-2022-20293
11 Aug 2022 — In LauncherApps, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-202298672 En LauncherApps, se presenta una posible forma de determinar si una aplicación está instalada, sin permisos de consulta, debido a una divulgación de infor... • https://source.android.com/security/bulletin/android-13 • CWE-203: Observable Discrepancy •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20292
https://notcve.org/view.php?id=CVE-2022-20292
11 Aug 2022 — In Settings, there is a possible way to bypass factory reset protections due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-202975040 En Settings, se presenta una posible forma de omitir las protecciones de restablecimiento de fábrica debido a un error lógico en el código. Esto podría conllevar a una escalada local de privilegios si... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20291
https://notcve.org/view.php?id=CVE-2022-20291
11 Aug 2022 — In AppOpsService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-203430648 En AppOpsService, se presenta una posible forma de determinar si una aplicación está instalada, sin permisos de consulta, debido a una divulgación de inf... • https://source.android.com/security/bulletin/android-13 • CWE-203: Observable Discrepancy •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20290
https://notcve.org/view.php?id=CVE-2022-20290
11 Aug 2022 — In Midi, there is a possible way to learn about private midi devices due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-203549963 En Midi, se presenta una posible forma de conocer los dispositivos midi privados debido a una omisión de permisos. Esto podría conllevar a una escalada local de privilegios sin ser necesarios privilegios de ej... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20289
https://notcve.org/view.php?id=CVE-2022-20289
11 Aug 2022 — In PackageInstaller, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-203683960 En PackageInstaller, se presenta una posible forma de determinar si una aplicación está instalada, sin permisos de consulta, debido a una divulgación ... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20288
https://notcve.org/view.php?id=CVE-2022-20288
11 Aug 2022 — In AppSearchManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-204082360 En AppSearchManagerService, se presenta una posible forma de determinar si una aplicación está instalada, sin permisos de consulta, debido a un... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20287
https://notcve.org/view.php?id=CVE-2022-20287
11 Aug 2022 — In AppSearchManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-204082784 En AppSearchManagerService, se presenta una posible forma de determinar si una aplicación está instalada, sin permisos de consulta, debido a un... • https://source.android.com/security/bulletin/android-13 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20286
https://notcve.org/view.php?id=CVE-2022-20286
11 Aug 2022 — In Connectivity, there is a possible bypass the restriction of starting activity from background due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-230866011 En Connectivity, es posible omitir la restricción de iniciar la actividad desde el fondo debido a un error lógico en el código. Esto podría conllevar a una escalada local de privilegios... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20285
https://notcve.org/view.php?id=CVE-2022-20285
11 Aug 2022 — In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-230868108 En PackageManager, se presenta una posible forma de determinar si una aplicación está instalada, sin permisos de consulta, debido a una divulgación de i... • https://source.android.com/security/bulletin/android-13 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-20284
https://notcve.org/view.php?id=CVE-2022-20284
11 Aug 2022 — In Telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure of phone accounts with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-231986341 En Telephony, se presenta una posible divulgación de información debido a una falta de comprobación de permisos. Esto podría conllevar a una divulgación de información local de cuentas de teléfono con los pr... • https://source.android.com/security/bulletin/android-13 • CWE-862: Missing Authorization •