cbcvebase.
CVE-2022-20083
published 2022-07-06

CVE-2022-20083: In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined…

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.18%
80.1th percentile
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00803883; Issue ID: MOLY00803883.

Affected

1 ranges
VendorProductVersion rangeFixed in
googleandroid

Detection & IOCsextracted from sources · hover to see the quote

  • Target attack surface is the Modem 2G/3G Call Control (CC) component; monitor for anomalous or malformed FACILITY message decoding in baseband/modem firmware logs
  • The vulnerability is triggered remotely with no user interaction via a crafted combined FACILITY message; network-level detection should focus on malformed/oversized FACILITY IEs in 2G/3G signalling
  • Reference patch ID MOLY00803883 when triaging MediaTek modem firmware versions to determine if the fix has been applied
  • Cross-reference Android Security Bulletin July 2022 (2022-07-01) patch level on affected devices; unpatched devices will be missing fix for A-231275475 / M-MOLY00803883
  • ·No public proof-of-concept or exploit code was referenced in the available sources; exploitation requires crafting malformed 2G/3G FACILITY signalling messages at the radio/network layer, which is outside typical application-layer visibility
  • ·The fix is vendor-specific (MediaTek MOLY00803883); patch availability depends on OEM integration into device firmware and is not guaranteed by the Android Security Bulletin date alone

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.