{"id":"ASB-A-240138318", "published":"2022-11-01T00:00:00Z", "modified":"2026-05-01T15:24:27.653932157Z", "aliases":["CVE-2022-20452", "A-240138318"], "details":"In initializeFromParcelLocked of BaseBundle.java, there is a possible method arbitrary code execution due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/frameworks/base", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"13:0"}, {"fixed":"13:2022-11-01"}]}], "versions":["13"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/frameworks/base/+/d2f9cc6342141cdb39f08a229d548d7b29cadd86"], "severity":"High", "spl":"2022-11-01", "types":["EoP"], "vanir_signatures":[{"deprecated":false, "digest":{"function_hash":"294971560677991495915799033849809071282", "length":1165}, "id":"ASB-A-240138318-44ad39a0", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d2f9cc6342141cdb39f08a229d548d7b29cadd86", "target":{"file":"core/java/android/os/BaseBundle.java", "function":"readFromParcelInner"}}, {"deprecated":false, "digest":{"function_hash":"41618496558948515551579002358314189668", "length":1322}, "id":"ASB-A-240138318-95c0bcd0", "signature_type":"Function", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d2f9cc6342141cdb39f08a229d548d7b29cadd86", "target":{"file":"core/java/android/os/BaseBundle.java", "function":"initializeFromParcelLocked"}}, {"deprecated":false, "digest":{"line_hashes":["205790670589368183264439125641744582550", "82884370948115524344035054150705602570", "216041608029756959842858753474917685482", "15162155614541361053556508522685827566", "198194646825072841361354763240243703190", "114445111499470849178140761363641537159", "285987342404552339375316945596200232299", "239707072679711863341443365323514481892", "26662991357027715929291080339741001944", "38157301873194198109658333375534443531"], "threshold":0.9}, "id":"ASB-A-240138318-b61c4053", "signature_type":"Line", "signature_version":"v1", "source":"https://android.googlesource.com/platform/frameworks/base/+/d2f9cc6342141cdb39f08a229d548d7b29cadd86", "target":{"file":"core/java/android/os/BaseBundle.java"}}]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2022-11-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/frameworks/base/+/a0d9fc3b28f5b8113c90b43997d6c0151cfcb052"}]}