ID
VAR-202210-0404
CVE
CVE-2022-26472
TITLE
Google of Android Untrusted Data Deserialization Vulnerability in
Trust: 0.8
sources:
JVNDB: JVNDB-2022-018680
DESCRIPTION
In ims, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07319095; Issue ID: ALPS07319095. Google of Android There is a vulnerability in deserialization of untrusted data.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. MediaTek chips are a variety of chips from MediaTek of China MediaTek Corporation. The vulnerability is caused by a package format mismatch, and attackers can use the vulnerability to elevate privileges
Trust: 2.16
sources:
NVD: CVE-2022-26472 //
JVNDB: JVNDB-2022-018680 //
CNVD: CNVD-2022-87387
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2022-87387
AFFECTED PRODUCTS
| vendor: | model: | android | scope: | eq | version: | 10.0 | Trust: 1.8 | |
| vendor: | model: | android | scope: | eq | version: | 11.0 | Trust: 1.8 | |
| vendor: | model: | android | scope: | eq | version: | 12.0 | Trust: 1.8 | |
| vendor: | model: | android | scope: | - | version: | - | Trust: 0.8 | |
| vendor: | model: | android | scope: | eq | version: | - | Trust: 0.8 | |
| vendor: | mediatek | model: | mt6789 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6833 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6853 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6855 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6873 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6875 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6877 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6883 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6885 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6889 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6891 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6893 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6983 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6769 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6769 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6781 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6781 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6785 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6785 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6833 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6855 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6877 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6879 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6879 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6893 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6983 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8791 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8791 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8797 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8797 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6853 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6873 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6883 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6885 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6889 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6895 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6895 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6761 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6761 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6765 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6765 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6768 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6768 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6771 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6771 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6779 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6779 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6875 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6739 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6739 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6853t android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6853t android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8321 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8321 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8385 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8385 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8666 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8666 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8675 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8675 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8765 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8765 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8768 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8768 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8786 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8786 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8788 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8788 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6763 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6763 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8766 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8766 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6762 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6762 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6789 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8789 android | scope: | eq | version: | 11.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8789 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6891 android | scope: | eq | version: | 12.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6739 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6761 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6762 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6763 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6765 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6768 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6769 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6771 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6779 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6781 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6785 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6789 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6833 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6853 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6853t android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6855 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6873 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6875 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6877 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6879 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6883 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6885 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6889 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6891 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6893 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6895 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt6983 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8321 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8385 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8666 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8675 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8765 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8766 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8768 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8786 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8788 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8789 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8791 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
| vendor: | mediatek | model: | mt8797 android | scope: | eq | version: | 10.0 | Trust: 0.6 |
sources:
CNVD: CNVD-2022-87387 //
JVNDB: JVNDB-2022-018680 //
NVD: CVE-2022-26472
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2022-87387 //
JVNDB: JVNDB-2022-018680 //
CNNVD: CNNVD-202210-011 //
NVD: CVE-2022-26472
PROBLEMTYPE DATA
| problemtype: | CWE-502 | Trust: 1.0 |
| problemtype: | Deserialization of untrusted data (CWE-502) [NVD evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-018680 //
NVD: CVE-2022-26472
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202210-011
TYPE
code problem
Trust: 0.6
sources:
CNNVD: CNNVD-202210-011
PATCH
| title: | Patch for Various MediaTek chip ims privilege escalation vulnerabilities | url: | https://www.cnvd.org.cn/patchInfo/show/370366 | Trust: 0.6 |
| title: | MediaTek Repair measures for chip code bugs | url: | http://123.124.177.30/web/xxk/bdxqById.tag?id=210289 | Trust: 0.6 |
sources:
CNVD: CNVD-2022-87387 //
CNNVD: CNNVD-202210-011
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-26472 | Trust: 3.8 |
| db: | JVNDB | id: | JVNDB-2022-018680 | Trust: 0.8 |
| db: | CNVD | id: | CNVD-2022-87387 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202210-011 | Trust: 0.6 |
sources:
CNVD: CNVD-2022-87387 //
JVNDB: JVNDB-2022-018680 //
CNNVD: CNNVD-202210-011 //
NVD: CVE-2022-26472
REFERENCES
| url: | https://corp.mediatek.com/product-security-bulletin/october-2022 | Trust: 3.0 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-26472 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-26472/ | Trust: 0.6 |
| url: | https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-october-2022-39447 | Trust: 0.6 |
sources:
CNVD: CNVD-2022-87387 //
JVNDB: JVNDB-2022-018680 //
CNNVD: CNNVD-202210-011 //
NVD: CVE-2022-26472
SOURCES
| db: | CNVD | id: | CNVD-2022-87387 |
| db: | JVNDB | id: | JVNDB-2022-018680 |
| db: | CNNVD | id: | CNNVD-202210-011 |
| db: | NVD | id: | CVE-2022-26472 |
LAST UPDATE DATE
2024-08-14T15:37:21.244000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2022-87387 | date: | 2022-12-14T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-018680 | date: | 2023-10-20T08:28:00 |
| db: | CNNVD | id: | CNNVD-202210-011 | date: | 2022-10-12T00:00:00 |
| db: | NVD | id: | CVE-2022-26472 | date: | 2022-10-11T16:26:49.920 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2022-87387 | date: | 2022-12-14T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-018680 | date: | 2023-10-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-202210-011 | date: | 2022-10-03T00:00:00 |
| db: | NVD | id: | CVE-2022-26472 | date: | 2022-10-07T20:15:10.870 |