CVE-2020-0041

Sažetak

In binder_transaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-145988638References: Upstream kernel

Reference

https://source.android.com/security/bulletin/2020-03-01
https://source.android.com/security/bulletin/2020-03-01
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-0041

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

23-10-2025 - 14:53

Objavljeno

10-03-2020 - 20:15