How severe is CVE-2022-39912?

CVE-2022-39912 has a CVSS v3 score of 6.2 (MEDIUM).

CVE-2022-39912

Name: android
Author: google

6.2MEDIUM

Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder.

Publicado: 12/8/2022Actualizado: 11/21/2024

Descripción

Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder.

Análisis IAImpulsado por IA

Productos Afectados

googleandroid

Referencias

https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=12
Vendor Advisory
https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=12
Vendor Advisory