ASB-A-217934478 — Vulnetix

Try Vulnetix Request Demo

ASB-A-217934478 PUBLISHED CVSS 6.900000095367432 MEDIUM

In registerPhoneAccount of PhoneAccountRegistrar.java, there is a possible way to prevent the user from selecting a phone account due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Risk Scores

CVSS v4.0

6.900000095367432

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
platform	packages/services/Telecomm	*, 12L-next:0, 12L-next
platform	frameworks/base	12L-next, 10:0, 10

Timeline

Jun 1, 2022 CVE Published
May 15, 2026 CVE Updated

References

Open in Interactive Console →