Lucene search

GoogleOSV:ASB-A-295334906

HistoryDec 01, 2023 - 12:00 a.m.

Granting access of protected ContentProviders on behalf of Launcher

2023-12-0100:00:00

Google

osv.dev

contentproviders

launcher

packagemanagerhelper

uri grant

input validation

privilege escalation

user interaction

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In hasPermissionForActivity of PackageManagerHelper.java, there is a possible URI grant due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

CPENameOperatorVersion
platform/packages/apps/launcher3eq12
platform/packages/apps/launcher3eq13
platform/packages/apps/launcher3eq11
platform/packages/apps/launcher3eq12L

Name	Operator	Version
platform/packages/apps/launcher3	eq	12
platform/packages/apps/launcher3	eq	13
platform/packages/apps/launcher3	eq	11
platform/packages/apps/launcher3	eq	12L

References

android.googlesource.com/platform/packages/apps/Launcher3/+/6c9a41117d5a9365cf34e770bbb00138f6bf997e

source.android.com/security/bulletin/2023-12-01

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for OSV:ASB-A-295334906