Web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-20392

Sept. 13, 2022, 8:15 p.m. |

National Vulnerability Database nist.gov

In declareDuplicatePermission of ParsedPermissionUtils.java, there is a possible way to obtain a dangerous permission without user consent due to improper input validation. This could lead to local escalation of privilege during app installation or upgrade with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-213323615

android cve

Cybersecurity Engineer

@ Apercen Partners LLC | Folsom, CA

IDM Sr. Security Developer

@ The Ohio State University | Columbus, OH, United States

IT Security Engineer

@ Stylitics | New York City

Information Security Engineer

@ VDA Labs | Remote

Information Security Analyst

@ Metropolitan Transportation Commission | San Francisco, CA

Personnel Security Specialist I

@ NT Concepts | Remote

Cyber Security Manager (SOC/Threat Detection)

@ Nubank | São Paulo

Personnel Security Specialist II

@ NT Concepts | Remote

Infrastructure Consultant - Graduate

@ Netcompany | Leeds, United Kingdom

Senior Cloud Network Security Engineer with expertise in WIFI technologies

@ Uni Systems | Luxembourg, Luxembourg, Luxembourg

DevSecOps Engineer - TOP SECRET Clearance Required - Colorado Springs/Denver/Pueblo

@ Spry Squared, Inc. | Colorado Springs, CO, United States

Product Security Associate

@ Mekari | Jakarta, Jakarta, Indonesia