CVE-2022-20465

Name of the Vulnerable Software and Affected Versions Android versions 10 through 13

Description A logic error in the code of KeyguardHostViewController.java and related files allows for a possible lockscreen bypass, leading to local escalation of privilege with no additional execution privileges needed. This issue can be exploited without user interaction. The vulnerability can be triggered by inserting a new SIM card, entering the incorrect PIN three times, and then entering the PUK code, which grants full access to the device without requiring the password or unlock pattern. The issue is caused by an error in the dismiss() function, which is intended to close the current security screen but instead closes the PIN/password screen, resulting in the device being unlocked.

Recommendations For Android versions 10 through 13, update to the November security patch or later to resolve the issue. As a temporary workaround, consider disabling the SIM card lock feature to minimize the risk of exploitation. Restrict physical access to devices to prevent potential attackers from inserting a new SIM card and exploiting the vulnerability.