In isFileUri of FileUtil.java, there is a possible way to bypass the check for a file:// scheme due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-215212561Read More
CVE-2022-20205
![](https://api-security.blog/wp-content/uploads/2022/07/cve-min-1-1024x683.png)