CVE-2022-20260

Medium

5.5/10

Summary

In the Phone app, there is a possible crash loop due to resource exhaustion. This could lead to local persistent denial of service in the Phone app with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-220865698

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: NONE
Availability Impact: HIGH

References

Advisory Timeline

Published Aug 12, 2022

CVE-2022-20260

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS