N/A

In setInputMethodWithSubtypeIdLocked of InputMethodManagerService.java, there is a possible way to setup input methods that are not enabled due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227207653

N/A

N/A

Google Pixel 输入验证错误漏洞

Google Pixel是美国谷歌（Google）公司的一款智能手机。 Google Pixel存在安全漏洞，该漏洞源于在InputMethodManagerService.java的setInputMethodWithSubtypeIdLocked中，由于输入验证不当，可能会绕过通知隐藏首选项，这可能会导致本地权限升级。

N/A

N/A