mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
24 lines
1.2 KiB
Markdown
24 lines
1.2 KiB
Markdown
|
### [CVE-2022-20006](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20006)
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
### Description
|
||
|
|
|
||
|
|
In several functions of KeyguardServiceWrapper.java and related files,, there is a possible way to briefly view what's under the lockscreen due to a race condition. This could lead to local escalation of privilege if a Guest user is enabled, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-151095871
|
||
|
|
|
||
|
|
### POC
|
||
|
|
|
||
|
|
#### Reference
|
||
|
|
No PoCs from references.
|
||
|
|
|
||
|
|
#### Github
|
||
|
|
- https://github.com/0xsaju/awesome-android-security
|
||
|
|
- https://github.com/ARPSyndicate/cvemon
|
||
|
|
- https://github.com/CyberLegionLtd/awesome-android-security
|
||
|
|
- https://github.com/NetKingJ/awesome-android-security
|
||
|
|
- https://github.com/albinjoshy03/4NdrO1D
|
||
|
|
- https://github.com/rajbhx/Awesome-Android-Security-Clone
|
||
|
|
- https://github.com/saeidshirazi/awesome-android-security
|
||
|
|
|