2 matches found
CVE-2022-20159
In asn1ecpkeyparse of acropora/crypto/asn1common.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
CVE-2022-20159
CVE-2022-20159 affects the Android kernel via the asn1_ec_pkey_parse function in acropora/crypto/asn1_common.c. The issue is an out-of-bounds read caused by an incorrect bounds check, which can lead to local information disclosure with system privileges (no user interaction required). Exploitatio...