CVE-2020-0438Access of Uninitialized Pointer in Google Android

CWE-824Access of Uninitialized PointerCWE-909Missing Initialization of ResourceCWE-665Improper Initialization5 documents5 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 96.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Platform Frameworks NativeGoogle Android
Timeline
PublishedNov 10
Latest updateMay 24

Description

In the AIBinder_Class constructor of ibinder.cpp, there is a possible arbitrary code execution due to uninitialized data. This could lead to local escalation of privilege if a process were using libbinder_ndk in a vulnerable way with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-161812320

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5google/androidAndroid-11 Android-10
NVDgoogle/android10.0, 11.0+1
Androidplatform/frameworks_native11-next:011-next:2020-11-01+2

🔴Vulnerability Details

3
GHSA
GHSA-mhh5-fmpv-m2jw: In the AIBinder_Class constructor of ibinder2022-05-24
CVEList
CVE-2020-0438: In the AIBinder_Class constructor of ibinder2020-11-10
OSV
CVE-2020-0438: In the AIBinder_Class constructor of ibinder2020-11-01

📋Vendor Advisories

1
Android
CVE-2020-0438: Android Security Bulletin 2020-11-01 CVE: CVE-2020-0438 Severity: HIGH Type: EoP Affected AOSP versions: 11 References: A-1618123202020-11-01
CVE-2020-0438 — Access of Uninitialized Pointer | cvebase