CVE-2020-0022

CWE-6825 documents5 sources

Severity

8.8HIGH

EPSS

6.9%

top 8.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Honor 8A Firmware Huawei Honor 8X Firmware Huawei Honor View 20 Firmware +19 more

Timeline

PublishedFeb 13

Latest updateMay 24

Description

In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages23 packages

▶CVEListV5androidAndroid-8.0 Android-8.1 Android-9 Android-10

▶NVDgoogle/android4 versions+3

▶NVDhuawei/p20_firmware< 10.0.0.162\(c00e156r1p4\)

▶NVDhuawei/p30_firmware< 10.0.0.190\(c432e22r2p5\)

▶NVDhuawei/nova_3_firmware< 9.1.0.338\(c00e333r1p1t8\)

Patches

Patch: source.android.com ↗Patch: source.android.com ↗

🔴Vulnerability Details

GHSA

GHSA-55v6-vvqw-j3qq: In reassemble_and_dispatch of packet_fragmenter↗2022-05-24

▶

CVEList

CVE-2020-0022: In reassemble_and_dispatch of packet_fragmenter↗2020-02-13

▶

📋Vendor Advisories

Android

CVE-2020-0022: Android Security Bulletin 2020-02-01 CVE: CVE-2020-0022 Severity: MEDIUM Type: DoS Affected AOSP versions: 10 References: A-143894715↗2020-02-01

▶

VMware

VMware ESXi and Horizon DaaS updates address OpenSLP remote code execution vulnerability (CVE-2019-5544)↗2019-12-05

▶