Lucene search

[email protected]CVE-2020-0022

HistoryFeb 13, 2020 - 3:15 p.m.

CVE-2020-0022

2020-02-1315:15:00

CWE-682

[email protected]

web.nvd.nist.gov

120

cve-2020-0022

out of bounds write

remote code execution

bluetooth

android-8.0

android-8.1

android-9

android-10

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.014 Low

EPSS

Percentile

86.0%

JSON

In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715

CPENameOperatorVersion
google:androidgoogle androideq8.0
google:androidgoogle androideq8.1
google:androidgoogle androideq9.0
google:androidgoogle androideq10.0
huawei:mate_20_firmwarehuawei mate 20 firmwarelt10.0.0.195\(c00e74r3p8\)
huawei:mate_20_pro_firmwarehuawei mate 20 pro firmwarelt10.0.0.196\(c185e7r2p4\)
huawei:mate_20_x_firmwarehuawei mate 20 x firmwarelt10.0.0.195\(c00e74r2p8\)
huawei:p_smart_firmwarehuawei p smart firmwarelt9.1.0.193\(c605e6r1p5t8\)
huawei:p_smart_2019_firmwarehuawei p smart 2019 firmwarelt10.0.0.180\(c185e3r4p1\)
huawei:p20_firmwarehuawei p20 firmwarelt10.0.0.162\(c00e156r1p4\)

CPE	Name	Operator	Version
google:android	google android	eq	8.0
google:android	google android	eq	8.1
google:android	google android	eq	9.0
google:android	google android	eq	10.0
huawei:mate_20_firmware	huawei mate 20 firmware	lt	10.0.0.195\(c00e74r3p8\)
huawei:mate_20_pro_firmware	huawei mate 20 pro firmware	lt	10.0.0.196\(c185e7r2p4\)
huawei:mate_20_x_firmware	huawei mate 20 x firmware	lt	10.0.0.195\(c00e74r2p8\)
huawei:p_smart_firmware	huawei p smart firmware	lt	9.1.0.193\(c605e6r1p5t8\)
huawei:p_smart_2019_firmware	huawei p smart 2019 firmware	lt	10.0.0.180\(c185e3r4p1\)
huawei:p20_firmware	huawei p20 firmware	lt	10.0.0.162\(c00e156r1p4\)

Rows per page:

1-10 of 251

References

packetstormsecurity.com/files/156891/Android-Bluetooth-Remote-Denial-Of-Service.html

seclists.org/fulldisclosure/2020/Feb/10

www.huawei.com/en/psirt/security-advisories/huawei-sa-20200513-03-smartphone-en

source.android.com/security/bulletin/2020-02-01

Social References

8.8 High

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

8.3 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:C/I:C/A:C

0.014 Low

EPSS

Percentile

86.0%

JSON

Related for CVE-2020-0022

prion1 zdt1 huawei1 githubexploit5 packetstorm1 threatpost2