Vulnerabilities > CVE-2022-39913 - Incorrect Authorization vulnerability in Google Android

047910
CVSS 3.3 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
local
low complexity
google
CWE-863

Summary

Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.

Common Weakness Enumeration (CWE)