Android OS: Activity From Background Bypass in StatusBarNotification
CVE-2022-20415 Published on October 11, 2022

In handleFullScreenIntent of StatusBarNotificationActivityStarter.java, there is a possible bypass of the restriction of starting activity from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-231322873

NVD

Products Associated with CVE-2022-20415

Want to know whenever a new CVE is published for Google Android? stack.watch will email you.

Google Android

Exploit Probability

EPSS

0.02%

Percentile

3.84%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Android OS: Activity From Background Bypass in StatusBarNotificationCVE-2022-20415 Published on October 11, 2022

Products Associated with CVE-2022-20415

Exploit Probability

Android OS: Activity From Background Bypass in StatusBarNotification
CVE-2022-20415 Published on October 11, 2022