Lucene search

GoogleOSV:ASB-A-257954050

HistoryApr 01, 2023 - 12:00 a.m.

Modifying other users' app locales using AppLocalePickerActivity in Settings

2023-04-0100:00:00

Google

osv.dev

applocalepickeractivity

locale modification

denial of service

user interaction

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

In canDisplayLocalUi of AppLocalePickerActivity.java, there is a possible way to change system app locales due to a missing permission check. This could lead to local denial of service across user boundaries with no additional execution privileges needed. User interaction is not needed for exploitation.

References

android.googlesource.com/platform/packages/apps/Settings/+/211f81afe632cc7b5e085adfb3d7949d80e0b810

source.android.com/security/bulletin/2023-04-01

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

Related for OSV:ASB-A-257954050