Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-20011

Опубликовано: 10 мая 2022
Источник: nvd
CVSS3: 5.5
CVSS2: 2.1
EPSS Низкий

Описание

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-214999128

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:*

EPSS

Процентиль: 17%
0.00053
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-862

Связанные уязвимости

ubuntu логотип

CVE-2022-20011

CVSS3: 5.5
ubuntu
больше 3 лет назад

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-214999128

debian логотип

CVE-2022-20011

CVSS3: 5.5
debian
больше 3 лет назад

In getArray of NotificationManagerService.java , there is a possible l ...

github логотип

GHSA-fhf6-wwc5-f233

CVSS3: 5.5
github
больше 3 лет назад

In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-214999128

EPSS

Процентиль: 17%
0.00053
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-862