N/A

In readArguments of CallSubjectDialog.java, there is a possible way to trick the user to call the wrong phone number due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-218341397

N/A

N/A

Google Android 输入验证错误漏洞

Google Android是美国谷歌（Google）公司的一套以Linux为基础的开源操作系统。 Google Android 10、11、12、12L及之前版本存在输入验证错误漏洞，攻击者利用该漏洞可以提升本地权限。

N/A

N/A