CVE-2022-20314

Name of the Vulnerable Software and Affected Versions Android versions Android-13

Description The issue is related to improper input validation in KeyChain, allowing a possible spoof keychain chooser activity request. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android version Android-13, consider restricting access to the KeyChain chooser activity to minimize the risk of exploitation until a patch is available. As a temporary workaround, review and limit the use of System execution privileges to reduce the potential impact of this issue.