Lucene search

K

Google_androidCVELIST:CVE-2020-0198

HistoryJun 11, 2020 - 2:43 p.m.

CVE-2020-0198

2020-06-1114:43:48

google_android

www.cve.org

8 High

AI Score

Confidence

High

0.11 Low

EPSS

Percentile

95.2%

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-10"
      }
    ]
  }
]

References

lists.debian.org/debian-lts-announce/2020/06/msg00020.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ELDZR6USD5PR34MRK2ZISLCYJ465FNKN/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVBD5JRUQPN4LQHTAAJHA3MR5M7YTAC7/

security.gentoo.org/glsa/202011-19

source.android.com/security/bulletin/pixel/2020-06-01

usn.ubuntu.com/4396-1/

8 High

AI Score

Confidence

High

0.11 Low

EPSS

Percentile

95.2%

Related for CVELIST:CVE-2020-0198

redhatcve1 prion1 veracode1 alpinelinux1 mageia1 openvas11 ubuntucve1 cve1 debiancve1 nvd1 debian1 osv1 nessus18 gentoo1 fedora2 oraclelinux2 cloudfoundry1 ubuntu1 redhat1 androidsecurity1