CVE-2022-20397 An out of bounds write in SitRilClient_OnResponse could lead to local escalation of privilege with no additional execution privileges needed.

A bounds check bypass can be exploited by sending a maliciously-crafted request to the application with a method parameter larger than 232 bytes.

Apktool can be exploited via a malicious APK file. It's possible to inject arbitrary code into an apktool session via custom apktool commands.

Apktool can be exploited via a malicious APK file. It's possible to inject arbitrary code into an apktool session via custom apktool commands.

ChunkEncoder(CVE-2007-4223)

A chunk encoding issue allows an attacker to read any file on a device without authentication.

Apktool can be exploited via a malicious APK file. It's possible to inject arbitrary code into an apktool session via custom apktool commands.

Timeline

Published on: 10/14/2022 17:15:00 UTC
Last modified on: 10/15/2022 03:45:00 UTC

References

• https://source.android.com/security/bulletin/pixel/2022-10-01
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-20397