CVE-2022-20475

Name of the Vulnerable Software and Affected Versions Android versions Android-11 through Android-13

Description The issue is related to a confused deputy in the ResetTargetTaskHelper.java test, which could allow the hijacking of any app that sets allowTaskReparenting to true. This could lead to local escalation of privilege without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android versions Android-11 through Android-13, consider restricting the use of allowTaskReparenting to minimize the risk of exploitation until a patch is available.