cnvd - cnvd-2023-12018

cnvd-2023-12018

Vulnerability from cnvd

Title: Google Android信息泄露漏洞（CNVD-2023-12018）

Description:

Google Android是一种基于Linux内核（不包含GNU组件）的自由及开放源代码的操作系统。

Google Android 13.0版本的PermissionManager.java的revokeOwnPermissionsOnKill存在信息泄露漏洞，该漏洞源于程序未对查询权限进行正确检查。攻击者可利用该漏洞在无需其他执行权限的情况下泄露信息。

Severity: 低

Patch Name: Google Android信息泄露漏洞（CVE-2022-20559）的补丁

Patch Description:

Google Android是一种基于Linux内核（不包含GNU组件）的自由及开放源代码的操作系统。Google Android 13版本的PermissionManager.java的revokeOwnPermissionsOnKill存在信息泄露漏洞，该漏洞源于程序未对查询权限进行正确检查。攻击者可利用该漏洞在无需其他执行权限的情况下泄露信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://source.android.com/security/bulletin/pixel/2022-12-01

Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-20559

Impacted products

Name
Google Android 13.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-20559",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2022-20559"
    }
  },
  "description": "Google Android\u662f\u4e00\u79cd\u57fa\u4e8eLinux\u5185\u6838\uff08\u4e0d\u5305\u542bGNU\u7ec4\u4ef6\uff09\u7684\u81ea\u7531\u53ca\u5f00\u653e\u6e90\u4ee3\u7801\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\n\nGoogle Android 13.0\u7248\u672c\u7684PermissionManager.java\u7684revokeOwnPermissionsOnKill\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u5bf9\u67e5\u8be2\u6743\u9650\u8fdb\u884c\u6b63\u786e\u68c0\u67e5\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u65e0\u9700\u5176\u4ed6\u6267\u884c\u6743\u9650\u7684\u60c5\u51b5\u4e0b\u6cc4\u9732\u4fe1\u606f\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a  https://source.android.com/security/bulletin/pixel/2022-12-01",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-12018",
  "openTime": "2023-02-27",
  "patchDescription": "Google Android\u662f\u4e00\u79cd\u57fa\u4e8eLinux\u5185\u6838\uff08\u4e0d\u5305\u542bGNU\u7ec4\u4ef6\uff09\u7684\u81ea\u7531\u53ca\u5f00\u653e\u6e90\u4ee3\u7801\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002Google Android 13\u7248\u672c\u7684PermissionManager.java\u7684revokeOwnPermissionsOnKill\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u5bf9\u67e5\u8be2\u6743\u9650\u8fdb\u884c\u6b63\u786e\u68c0\u67e5\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u65e0\u9700\u5176\u4ed6\u6267\u884c\u6743\u9650\u7684\u60c5\u51b5\u4e0b\u6cc4\u9732\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Google Android\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CVE-2022-20559\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Google Android 13.0"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2022-20559",
  "serverity": "\u4f4e",
  "submitTime": "2023-02-10",
  "title": "Google Android\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2023-12018\uff09"
}

CVE-2022-20559 (GCVE-0-2022-20559)

Vulnerability from cvelistv5

Published

2022-12-16 00:00

Modified

2025-04-18 15:24

Severity ?

3.3 (Low) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE

Information disclosure

Summary

In revokeOwnPermissionsOnKill of PermissionManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-219739967

References

▼	URL	Tags
	https://source.android.com/security/bulletin/pixel/2022-12-01

Impacted products

	Vendor	Product	Version
	n/a	Android	Version: Android-13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:17:52.823Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://source.android.com/security/bulletin/pixel/2022-12-01"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 3.3,
              "baseSeverity": "LOW",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-20559",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-18T15:23:38.059999Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-203",
                "description": "CWE-203 Observable Discrepancy",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-18T15:24:11.381Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Android",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Android-13"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In revokeOwnPermissionsOnKill of PermissionManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-219739967"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-12-16T00:00:00.000Z",
        "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
        "shortName": "google_android"
      },
      "references": [
        {
          "url": "https://source.android.com/security/bulletin/pixel/2022-12-01"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
    "assignerShortName": "google_android",
    "cveId": "CVE-2022-20559",
    "datePublished": "2022-12-16T00:00:00.000Z",
    "dateReserved": "2021-10-14T00:00:00.000Z",
    "dateUpdated": "2025-04-18T15:24:11.381Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted