VDB
ASB-A-221041256
ASB-A-221041256
PUBLISHED
CVSS 6.900000095367432 MEDIUM
In onSaveRingtone of DefaultRingtonePreference.java, there is a possible inappropriate file read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | packages/apps/Settings | 10:0, 10, 11:0 |
Timeline
- Aug 1, 2022 CVE Published
- May 15, 2026 CVE Updated
References
- https://source.android.com/security/bulletin/2022-08-01 advisory
- https://android.googlesource.com/platform/packages/apps/Settings/+/a9da6b809944018ef4c1a8eaecdec9cdecf47e15 patch
- https://android.googlesource.com/platform/packages/apps/Settings/+/1de10d24aa8d6a54b991299091877b18ee696d73 patch
- https://android.googlesource.com/platform/packages/apps/Settings/+/9bd1402e5aa758f2843154f395b5a5dfa91c1dca patch
- https://android.googlesource.com/platform/packages/apps/Settings/+/e4c22580c9a66a3d5523782c2daa707531210227 patch
- https://android.googlesource.com/platform/packages/apps/Settings/+/ec3ae8bb178b8b5fb54572632e77984f9bfd5b86 patch
- https://android.googlesource.com/platform/packages/apps/Settings/+/40fbcf333f09a92d6499cf94d67c60c3a03c9a33 patch