VYPR

SettingsProvider

by Huawei

CVEs (3)

  • CVE-2023-34161Jun 19, 2023
    risk 0.00cvss epss 0.00

    nappropriate authorization vulnerability in the SettingsProvider module.Successful exploitation of this vulnerability may cause features to perform abnormally.

  • CVE-2022-20255Aug 11, 2022
    risk 0.00cvss epss 0.00

    In SettingsProvider, there is a possible way to read or change the default ringtone due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2022-24925Feb 11, 2022
    risk 0.00cvss epss 0.00

    Improper input validation vulnerability in SettingsProvider prior to Android S(12) allows privileged attackers to trigger a permanent denial of service attack on a victim's devices.