VDB
ASB-A-154913391
ASB-A-154913391
PUBLISHED
CVSS 6.900000095367432 MEDIUM
In startInputUncheckedLocked of InputMethodManagerService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | frameworks/base | 10:0, 10, 11:0 |
Timeline
- Sep 1, 2022 CVE Published
- May 15, 2026 CVE Updated