Vulnerabilities > CVE-2022-33694 - Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0

047910
CVSS 3.3 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
local
low complexity
google
CWE-668

Summary

Exposure of Sensitive Information in CSC application prior to SMR Jul-2022 Release 1 allows local attacker to access wifi information via unprotected intent broadcasting.

Vulnerable Configurations

Part Description Count
OS
Google
3

Common Weakness Enumeration (CWE)