2 matches found
CVE-2020-0117
In aescmac of aescmac.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the bluetooth server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1...
CVE-2020-0117
CVE-2020-0117 affects the Android System component (aes_cmac in aes_cmac.cc), where an out-of-bounds write can occur due to an integer overflow. This could allow remote code execution in the Bluetooth server with no user interaction. Affected Android versions: 8.0–10 (Android 8.0, 8.1, 9, 10). Ex...