{"id":"ASB-A-193445603","details":"In onActivityViewReady of DetailDialog.kt, there is a possible Intent Redirect due to a confused deputy. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is needed for exploitation.","aliases":["A-193445603","CVE-2021-39668"],"modified":"2026-04-03T15:37:31.002635Z","published":"2022-02-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2022-02-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/frameworks/base/+/f84fdf2e6a98b81c7b55517227bd4cb53318d5aa"}],"affected":[{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2022-02-01"}]}],"versions":["11"],"ecosystem_specific":{"types":["EoP"],"spl":"2022-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/d7b16dd2a56035b2feec9f39d6d461fd551317eb"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-193445603.json"}},{"package":{"name":"platform/frameworks/base","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2022-02-01"}]}],"versions":["12"],"ecosystem_specific":{"types":["EoP"],"spl":"2022-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/frameworks/base/+/96aa501bb12a22f63241dc5b756322ba9b2a6827"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-193445603.json"}}],"schema_version":"1.7.5"}