ASB-A-157929241 — Vulnetix

ASB-A-157929241 PUBLISHED

In WindowManager, there is a possible tapjacking attack due to an incorrect window flag when processing user input. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

Affected Products

Vendor	Product	Versions
platform	packages/apps/Launcher3	11:0, 11:0, 12
platform	packages/modules/Permission	12L-next:0, 12L-next, 12L-next
platform	frameworks/base	11:0, 12L-next:0, 12L-next
platform	frameworks/native	11, *, 10

Timeline

Jun 1, 2022 CVE Published
May 15, 2026 CVE Updated

References

https://source.android.com/security/bulletin/2022-06-01 advisory

Open in Interactive Console →