CVE-2022-47029 – This vulnerability in Action Launcher allows at... (How to Fix)

Q: What is the severity of CVE-2022-47029?

CVE-2022-47029 has a CVSS score of 7.8 (HIGH). This vulnerability in Action Launcher allows attackers to escalate privileges by modifying intent strings sent to the update function. It affects users of Action Launcher v50.5 on Android devices, potentially allowing malicious apps to gain elevated permissions.

📋 TL;DR

This vulnerability in Action Launcher allows attackers to escalate privileges by modifying intent strings sent to the update function. It affects users of Action Launcher v50.5 on Android devices, potentially allowing malicious apps to gain elevated permissions.

💻 Affected Systems

Products:

Action Launcher

Versions: v50.5

Operating Systems: Android

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects Action Launcher v50.5 on Android devices. Requires a malicious app to be installed on the same device.

📦 What is this software?

Action Launcher by Actionlauncher

View all CVEs affecting Action Launcher →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could gain full system-level privileges, potentially compromising the entire Android device, accessing sensitive data, or installing persistent malware.

🟠

Likely Case

A malicious app could gain elevated permissions to access protected system resources, user data, or perform unauthorized actions without user consent.

🟢

If Mitigated

With proper app sandboxing and permission controls, impact would be limited to the app's own data and permissions, preventing system-wide compromise.

🌐 Internet-Facing: LOW - This is a local privilege escalation requiring a malicious app to be installed on the device.

🏢 Internal Only: MEDIUM - Malicious apps could exploit this if installed, but requires user interaction or sideloading.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires a malicious app to be installed on the target device and to craft specific intent strings.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: v50.6 or later

Vendor Advisory: https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2022-47029/CVE%20detailed.md

Restart Required: Yes

Instructions:

1. Open Google Play Store 2. Search for Action Launcher 3. Update to latest version (v50.6+) 4. Restart device after update

🔧 Temporary Workarounds

Disable Action Launcher

android

Temporarily disable or uninstall Action Launcher until patched

Settings > Apps > Action Launcher > Disable/Uninstall

Restrict app installations

android

Prevent installation of unknown apps from untrusted sources

Settings > Security > Unknown Sources > Disable

🧯 If You Can't Patch

Uninstall Action Launcher and use alternative launcher
Enable Google Play Protect and only install apps from official store

🔍 How to Verify

Check if Vulnerable:

Check Action Launcher version in Settings > Apps > Action Launcher > App Info

Check Version:

adb shell dumpsys package com.actionlauncher.playstore | grep versionName

Verify Fix Applied:

Verify Action Launcher version is v50.6 or higher after update

📡 Detection & Monitoring

Log Indicators:

Unusual intent strings sent to Action Launcher update function
Permission escalation attempts in system logs

Network Indicators:

Not applicable - local exploit only

SIEM Query:

Not applicable for typical mobile device management

📊 Metadata

CVE ID: CVE-2022-47029

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-1284

Published: May 30, 2023

Last Updated: January 14, 2025

🔗 References

https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2022-47029/CVE%20detailed.md Exploit,Third Party Advisory
https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2022-47029/CVE%20detailed.md Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-47029, you might also want to check these: