CVE-2022-20562

Name of the Vulnerable Software and Affected Versions Android kernel

Description A logic error in the code of ap input processor.c functions could allow recording audio during a phone call, leading to local information disclosure. This issue requires User execution privileges and does not need user interaction for exploitation.

Recommendations For Android kernel, consider restricting access to sensitive audio processing functions until a patch is available. As a temporary workaround, disabling the audio recording feature during phone calls may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.