CVE-2022-48446

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jun 6, 2023

Updated: Jan 8, 2025

CWE ID 862

Summary

CVE-2022-48446: A vulnerability affecting telephony services involves a missing permission check. This issue can result in a local denial of service without requiring any additional execution privileges. An attacker could exploit this flaw to disrupt the targeted telephony service, causing inconvenience or disruption to users. The exact impact on service availability and performance depends on the specific implementation of the affected telephony service. Mitigations include implementing access control mechanisms and regularly updating software to address known vulnerabilities.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners