3 matches found
CVE-2022-20367
In constructtransaction of lwisioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
CVE-2022-20367
In constructtransaction of lwisioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
CVE-2022-20367
CVE-2022-20367 affects the Android kernel; the vulnerability is in the construct_transaction function of lwis_ioctl.c, where an integer overflow can cause an out-of-bounds write, enabling local privilege escalation with system execution privileges required and no user interaction. The issue is id...