CVE-2020-0022

Exploit

EPSS 7.73%
Published 13.02.2020 15:15:11
Last modified 21.11.2024 04:52:45
Source security@android.com
Teams watchlist Login
Open Login

In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715

Affected products Warnungen 0 Metrics 4 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Android Version8.0

Google ≫ Android Version8.1

Google ≫ Android Version9.0

Google ≫ Android Version10.0

Huawei ≫ Mate 20 Firmware Version < 10.0.0.195\(c00e74r3p8\)

Huawei ≫ Mate 20 Version-

Huawei ≫ Mate 20 Pro Firmware Version < 10.0.0.196\(c185e7r2p4\)

Huawei ≫ Mate 20 Pro Version-

Huawei ≫ Mate 20 X Firmware Version < 10.0.0.195\(c00e74r2p8\)

Huawei ≫ Mate 20 X Version-

Huawei ≫ P Smart Firmware Version < 9.1.0.193\(c605e6r1p5t8\)

Huawei ≫ P Smart Version-

Huawei ≫ P Smart 2019 Firmware Version < 10.0.0.180\(c185e3r4p1\)

Huawei ≫ P Smart 2019 Version-

Huawei ≫ P20 Firmware Version < 10.0.0.162\(c00e156r1p4\)

Huawei ≫ P20 Version-

Huawei ≫ P20 Pro Firmware Version < 10.0.0.162\(c00e156r1p4\)

Huawei ≫ P20 Pro Version-

Huawei ≫ P30 Firmware Version < 10.0.0.190\(c432e22r2p5\)

Huawei ≫ P30 Version-

Huawei ≫ P30 Pro Firmware Version < 10.0.0.195\(c00e85r2p8\)

Huawei ≫ P30 Pro Version-

Huawei ≫ Y6 2019 Firmware Version < 9.1.0.290\(c185e5r4p1\)

Huawei ≫ Y6 2019 Version-

Huawei ≫ Y6 Pro 2019 Firmware Version < 9.1.0.290\(c636e5r3p1\)

Huawei ≫ Y6 Pro 2019 Version-

Huawei ≫ Y9 2019 Firmware Version < 9.1.0.264\(c185e2r5p1t8\)

Huawei ≫ Y9 2019 Version-

Huawei ≫ Nova 3 Firmware Version < 9.1.0.338\(c00e333r1p1t8\)

Huawei ≫ Nova 3 Version-

Huawei ≫ Nova Lite 3 Firmware Version < 9.1.0.322\(c635e8r2p2\)

Huawei ≫ Nova Lite 3 Version-

Huawei ≫ Honor 8a Firmware Version < 9.1.0.291\(c185e3r4p1\)

Huawei ≫ Honor 8a Version-

Huawei ≫ Honor 8x Firmware Version < 10.0.0.183\(c185e2r6p1\)

Huawei ≫ Honor 8x Version-

Huawei ≫ Honor View 20 Firmware Version < 10.0.0.195\(c636e3r4p3\)

Huawei ≫ Honor View 20 Version-

Huawei ≫ Mate 30 Pro Firmware Version < 10.0.0.203\(c00e202r7p2\)

Huawei ≫ Mate 30 Pro Version-

Huawei ≫ Mate 30 Firmware Version < 10.0.0.203\(c00e202r7p2\)

Huawei ≫ Mate 30 Version-

Huawei ≫ Mate 30 Pro 5g Firmware Version < 10.0.0.203\(c00e202r7p2\)

Huawei ≫ Mate 30 Pro 5g Version-

Huawei ≫ Mate 30 5g Firmware Version < 10.0.0.203\(c00e202r7p2\)

Huawei ≫ Mate 30 5g Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	7.73%	0.916

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	8.3	6.5	10	AV:A/AC:L/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0	8.8	2.8	5.9	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-682 Incorrect Calculation

The product performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management.

https://source.android.com/security/bulletin/2020-02-01

Patch

Vendor Advisory

http://packetstormsecurity.com/files/156891/Android-Bluetooth-Remote-Denial-Of-Service.html

Third Party Advisory

Exploit

VDB Entry

http://seclists.org/fulldisclosure/2020/Feb/10

Third Party Advisory

Mailing List

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200513-03-smartphone-en

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-0022

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-0022

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-0022

EUVD