PT-2022-16398 · Google · Wear Os

Published

2022-02-11

Updated

2022-02-18

CVE-2022-23997

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Wear OS version 3.0 prior to Firmware update Feb-2022 Release

Description The issue concerns an unprotected component vulnerability in the StTheaterModeDurationAlarmReceiver. This vulnerability allows untrusted applications to disable theater mode without proper permission.

Recommendations For Wear OS version 3.0, apply the Firmware update Feb-2022 Release to resolve the issue.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2022-23997

Affected Products

Wear Os

PT-2022-16398 · Google · Wear Os

CVE-2022-23997

Weakness Enumeration

Related Identifiers

Affected Products

References · 3