cvedb.io
CVE-2022-20214
MEDIUM · CVSS 4.7
EPSS exploitation probability: 0%
Published 2023-01-26T21:15:25.963 · Last modified 2026-06-17T04:23:54.133

Summary

In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. Attackers can overlay the toggle button to enable apps to modify system settings without user consent.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-183411210

Affected products

google — android

Does this affect you?

Add your gear to cvedb and we'll alert you only when google ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.