{"id":"ASB-A-248251018","details":"In onCreatePreferences of  EditInfoFragment.java, there is a possible way to read contacts belonging to other users due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-248251018","CVE-2023-20932"],"modified":"2026-05-25T16:46:24.913870386Z","published":"2023-02-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2023-02-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/packages/apps/EmergencyInfo/+/ad688aaa1563f0d1d33af735d98d84c8af254838"}],"affected":[{"package":{"name":"platform/packages/apps/EmergencyInfo","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"10:0"},{"fixed":"10:2023-02-01"}]}],"versions":["10"],"ecosystem_specific":{"types":["ID"],"spl":"2023-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/packages/apps/EmergencyInfo/+/73120eb678baf8285cc69587fbc6da23bab4016a"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-248251018.json"}},{"package":{"name":"platform/packages/apps/EmergencyInfo","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2023-02-01"}]}],"versions":["11"],"ecosystem_specific":{"types":["ID"],"spl":"2023-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/packages/apps/EmergencyInfo/+/73120eb678baf8285cc69587fbc6da23bab4016a"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-248251018.json"}},{"package":{"name":"platform/packages/apps/EmergencyInfo","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2023-02-01"}]}],"versions":["12"],"ecosystem_specific":{"types":["ID"],"spl":"2023-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/packages/apps/EmergencyInfo/+/00dbb36b79cc7e611ac0c3387fa692225299c72b"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-248251018.json"}},{"package":{"name":"platform/packages/apps/EmergencyInfo","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2023-02-01"}]}],"versions":["12L"],"ecosystem_specific":{"types":["ID"],"spl":"2023-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/packages/apps/EmergencyInfo/+/00dbb36b79cc7e611ac0c3387fa692225299c72b"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-248251018.json"}},{"package":{"name":"platform/packages/apps/EmergencyInfo","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2023-02-01"}]}],"versions":["13"],"ecosystem_specific":{"types":["ID"],"spl":"2023-02-01","severity":"High","fixes":["https://android.googlesource.com/platform/packages/apps/EmergencyInfo/+/00dbb36b79cc7e611ac0c3387fa692225299c72b"]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-248251018.json"}}],"schema_version":"1.7.5"}