2 matches found
CVE-2020-0033
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to stale pointer. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...
CVE-2020-0033
CVE-2020-0033 involves an out-of-bounds write in CryptoPlugin::decrypt (CryptoPlugin.cpp) causing local elevation of privilege on Android. The issue arises from a stale pointer in the CryptoPlugin decryption path, requiring LOCAL access with LOW attack complexity and no user interaction (per CVSS...