2 matches found
CVE-2020-0420
In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2020-0420
CVE-2020-0420 affects Android Framework due to a missing permission check in setUpdatableDriverPath in GpuService.cpp, enabling local EoP with no user interaction. The NVD/NCSC/Red Hat entries confirm a memory-corruption path leading to privilege escalation. The Android Security Bulletin lists th...