CVE-2022-20083
published 2022-07-06CVE-2022-20083: In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined…
PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.18%
80.1th percentile
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00803883; Issue ID: MOLY00803883.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Target attack surface is the Modem 2G/3G Call Control (CC) component; monitor for anomalous or malformed FACILITY message decoding in baseband/modem firmware logs ↗
- →The vulnerability is triggered remotely with no user interaction via a crafted combined FACILITY message; network-level detection should focus on malformed/oversized FACILITY IEs in 2G/3G signalling ↗
- →Reference patch ID MOLY00803883 when triaging MediaTek modem firmware versions to determine if the fix has been applied ↗
- →Cross-reference Android Security Bulletin July 2022 (2022-07-01) patch level on affected devices; unpatched devices will be missing fix for A-231275475 / M-MOLY00803883 ↗
- ·No public proof-of-concept or exploit code was referenced in the available sources; exploitation requires crafting malformed 2G/3G FACILITY signalling messages at the radio/network layer, which is outside typical application-layer visibility ↗
- ·The fix is vendor-specific (MediaTek MOLY00803883); patch availability depends on OEM integration into device firmware and is not guaranteed by the Android Security Bulletin date alone ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w5h3-hfjg-f58j: In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check
ghsa_unreviewed·2022-07-07
CVE-2022-20083 [CRITICAL] CWE-787 GHSA-w5h3-hfjg-f58j: In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00803883; Issue ID: MOLY00803883.
OSV
CVE-2022-20083: In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check
osv·2022-07-01
CVE-2022-20083 CVE-2022-20083: In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check
In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation.
Android
CVE-2022-20083: Modem 2G/3G CC
vendor_android·2022-07-01·CVSS 9.8
CVE-2022-20083 [CRITICAL] CVE-2022-20083: Modem 2G/3G CC
Android Security Bulletin 2022-07-01
CVE: CVE-2022-20083
Severity: HIGH
Component: Modem 2G/3G CC
References: A-231275475
M-MOLY00803883*
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-07-06
Published