CVE-2020-0375

2020-09-1720:58:45

google_android

www.cve.org

telephony

permission bypass

local privilege escalation

euicc countries

android-11

cve-2020-0375

AI Score

8.4

Confidence

High

EPSS

Percentile

5.1%

JSON

In Telephony, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege and the setting of supported EUICC countries with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-156253476

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-11"
      }
    ]
  }
]

References

source.android.com/security/bulletin/android-11