PUB-A-227203202 — Vulnetix

PUB-A-227203202 PUBLISHED

In onCreate of various files, there is a possible tapjacking/overlay attack. This could lead to local escalation of privilege or denial of server with User execution privileges needed. User interaction is not needed for exploitation.

Affected Products

Vendor	Product	Versions
platform	packages/apps/Stk	13, *, 13

Timeline

Dec 1, 2022 CVE Published
May 15, 2026 CVE Updated

References

https://source.android.com/security/bulletin/2022-12-01 advisory
https://android.googlesource.com/platform/packages/apps/Stk/+/aa8d8c37e1949286191649d9e9d97e750a948cf9 patch

Open in Interactive Console →