CVE-2022-20140 — Out-of-bounds Write in Google Android

CWE-787 — Out-of-bounds Write5 documents5 sources

Severity

9.8CRITICALNVD

EPSS

4.2%

top 11.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Platform Packages Modules Bluetooth Platform System BT Google Android

Timeline

PublishedJun 15

Latest updateJun 16

Description

In read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid ID: A-227618988

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶CVEListV5google/androidAndroid-12 Android-12L

▶NVDgoogle/android12.0, 12.1+1

▶Androidplatform/system_bt12:0 — 12:2022-06-01+1

▶Androidplatform/packages_modules_bluetooth12L-next:0 — 12L-next:2022-06-01

🔴Vulnerability Details

GHSA

GHSA-p9wg-rw4x-5mjg: In read_multi_rsp of gatt_sr↗2022-06-16

▶

CVEList

CVE-2022-20140: In read_multi_rsp of gatt_sr↗2022-06-15

▶

OSV

CVE-2022-20140: In read_multi_rsp of gatt_sr↗2022-06-01

▶

📋Vendor Advisories

Android

CVE-2022-20140: Android Security Bulletin 2022-06-01 CVE: CVE-2022-20140 Severity: CRITICAL Type: EoP Affected AOSP versions: 12, 12L References: A-227618988↗2022-06-01

▶