CVE-2020-0009
published 2020-01-08CVE-2020-0009: In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of…
PriorityP434medium5.5CVSS 3.1
AVLACLPRLUINSUCNIHAN
EXPLOIT
EPSS
0.69%
48.0th percentile
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-142938932
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 5.5.13-1 (bookworm) | linux 5.5.13-1 (bookworm) |
| android | — | — | |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
| linux | linux_kernel | >= 0 < 5.5.13-1 | 5.5.13-1 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
osv5.5MEDIUM
vendor_debian5.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-66j5-w5hg-38pg: In calc_vm_may_flags of ashmem
ghsa_unreviewed·2022-05-24
CVE-2020-0009 [LOW] CWE-276 GHSA-66j5-w5hg-38pg: In calc_vm_may_flags of ashmem
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-142938932
OSV
CVE-2020-0009: In calc_vm_may_flags of ashmem
osv·2020-01-08·CVSS 5.5
CVE-2020-0009 [MEDIUM] CVE-2020-0009: In calc_vm_may_flags of ashmem
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-142938932
VMware
vRealize Operations Application Remote Collector (ARC) addresses Authentication Bypass and Directory Traversal vulnerabilities (CVE-2020-11651, CVE-2020-11652)
vendor_vmware·2020-05-08·CVSS 9.8
CVE-2020-11651 [CRITICAL] vRealize Operations Application Remote Collector (ARC) addresses Authentication Bypass and Directory Traversal vulnerabilities (CVE-2020-11651, CVE-2020-11652)
VMSA-2020-0009: vRealize Operations Application Remote Collector (ARC) addresses Authentication Bypass and Directory Traversal vulnerabilities (CVE-2020-11651, CVE-2020-11652)
The Application Remote Collector (ARC) introduced with vRealize Operations 7.5 utilizes Salt which is affected by CVE-2020-11651 and CVE-2020-11652. VMware has evaluated CVE-2020-11651 (Authentication Bypass) to be in the Critical severity range with a maximum CVSSv3 base score of 10.0 and CVE-2020-11652 (Directory Traversal) to be in the Important severity range with a maximum CVSSv3 base score of 7.5.
CVEs: CVE-2020-11651, CVE-2020-11652
Affected products: VMware Aria
Android
CVE-2020-0009: ashmem
vendor_android·2020-01-01·CVSS 5.5
CVE-2020-0009 [MEDIUM] CVE-2020-0009: ashmem
Android Security Bulletin 2020-01-01
CVE: CVE-2020-0009
Severity: HIGH
Type: EoP
Component: ashmem
References: A-142938932*
Debian
CVE-2020-0009: linux - In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared ...
vendor_debian·2020·CVSS 5.5
CVE-2020-0009 [MEDIUM] CVE-2020-0009: linux - In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared ...
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-142938932
Scope: local
bookworm: resolved (fixed in 5.5.13-1)
bullseye: resolved (fixed in 5.5.13-1)
forky: resolved (fixed in 5.5.13-1)
sid: resolved (fixed in 5.5.13-1)
trixie: resolved (fixed in 5.5.13-1)
No detection rules found.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/155903/Android-ashmem-Read-Only-Bypasses.htmlhttps://lists.debian.org/debian-lts-announce/2020/06/msg00011.htmlhttps://lists.debian.org/debian-lts-announce/2020/06/msg00013.htmlhttps://source.android.com/security/bulletin/2020-01-01http://packetstormsecurity.com/files/155903/Android-ashmem-Read-Only-Bypasses.htmlhttps://lists.debian.org/debian-lts-announce/2020/06/msg00011.htmlhttps://lists.debian.org/debian-lts-announce/2020/06/msg00013.htmlhttps://source.android.com/security/bulletin/2020-01-01
2020-01-08
Published