CVE-2022-20214

In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. Attackers can overlay the toggle button to enable apps to modify system settings without user consent.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-183411210
References
Configurations

Configuration 1

cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*

Information

Published : 2023-01-26 09:15

Updated : 2023-02-01 03:36


NVD link : CVE-2022-20214

Mitre link : CVE-2022-20214

Products Affected
No products.
CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames