CVE-2022-20374

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a possible bypass of configuration integrity due to improperly used crypto, which could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android kernel, consider applying configuration changes to enhance the security of crypto usage until a patch is available. As a temporary workaround, restrict access to sensitive areas of the system to minimize the risk of exploitation.