CVE-2022-20215

Name of the Vulnerable Software and Affected Versions Android versions Android-10 through Android-12

Description The issue is related to a tapjacking/overlay attack in the MasterClearConfirmFragment.java file. This could lead to a local denial of service with no additional execution privileges needed. User interaction is necessary for exploitation.

Recommendations For Android versions Android-10 through Android-12, consider restricting access to the MasterClearConfirmFragment.java functionality until a patch is available. As a temporary workaround, avoid using the affected functionality in situations where tapjacking/overlay attacks are possible. At the moment, there is no information about a newer version that contains a fix for this vulnerability.