CVE-2022-20468Out-of-bounds Read in Packages Modules Bluetooth

CWE-125Out-of-bounds Read6 documents6 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 77.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Platform Packages Modules BluetoothPlatform System BTGoogle Android
Timeline
PublishedDec 13
Latest updateApr 16

Description

In BNEP_ConnectResp of bnep_api.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-228450451

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

CVEListV5google/androidAndroid-10 Android-11 Android-12 Android-12L Android-13
NVDgoogle/android4 versions+3
Androidplatform/packages_modules_bluetooth13:013:2022-12-01
Androidplatform/system_bt10:010:2022-12-01+2

🔴Vulnerability Details

4
VulDB
Google Android 10.0/11.0/12.0/13.0 Bluetooth bnep_api.cc BNEP_ConnectResp out-of-bounds (A-228450451 / EUVD-2022-25728)2026-04-16
CVEList
CVE-2022-20468: In BNEP_ConnectResp of bnep_api2022-12-13
GHSA
GHSA-jfjc-v875-ppfc: In BNEP_ConnectResp of bnep_api2022-12-13
OSV
CVE-2022-20468: In BNEP_ConnectResp of bnep_api2022-12-01

📋Vendor Advisories

1
Android
CVE-2022-20468: Android Security Bulletin 2022-12-01 CVE: CVE-2022-20468 Severity: MEDIUM Type: ID Affected AOSP versions: 10, 11, 12, 12L, 13 References: A-2284504512022-12-01
CVE-2022-20468 — Out-of-bounds Read | cvebase