CVE-2022-48518

Name of the Vulnerable Software and Affected Versions iaware system (affected versions not specified)

Description The issue is related to the signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. This can be exploited to cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, affecting system performance.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.