Lucene search

K

China National Vulnerability DatabaseCNVD-2022-53382

HistoryJun 14, 2022 - 12:00 a.m.

Google Android out-of-bounds read vulnerability (CNVD-2022-53382)

2022-06-1400:00:00

China National Vulnerability Database

www.cnvd.org.cn

22

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

Google Android is a Linux-based open source operating system from Google, Inc. An out-of-bounds read vulnerability exists in Google Android, which stems from a possible out-of-bounds read in hid-lg.c and other USB HID files in lg_probe and related functions due to input validation errors. An attacker could exploit the vulnerability to cause local information disclosure.

4.6 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

Related for CNVD-2022-53382

debiancve1 osv4 ubuntucve1 redhatcve1 prion1 cve1 nessus30 openvas38 suse9 photon1 ubuntu3