CVE-2022-20321

Name of the Vulnerable Software and Affected Versions Android versions Android-13

Description The issue is related to a missing permission check in Settings, allowing an application without permissions to read the content of WiFi QR codes. This could lead to local information disclosure with no additional execution privileges needed. User interaction is required for exploitation.

Recommendations For Android version Android-13, consider restricting access to WiFi QR code settings until a patch is available. As a temporary workaround, avoid using the WiFi QR code feature in Settings to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.