CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-20214

In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. Attackers can overlay the toggle button to enable apps to modify system settings without user consent.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-183411210

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.5%

CVSS Severity

CVSS v3 Score 4.7

References

https://source.android.com/security/bulletin/aaos/2023-01-01
https://source.android.com/security/bulletin/aaos/2023-01-01

Products affected by CVE-2022-20214

Google » Android » Version: 10.0

cpe:2.3:o:google:android:10.0
Google » Android » Version: 11.0

cpe:2.3:o:google:android:11.0
Google » Android » Version: 12.0

cpe:2.3:o:google:android:12.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-20214

Products

Pricing

Contact Us