CVE-2020-0041

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Android kernel versions (affected versions not specified)

Description The issue is related to an out-of-bounds write operation in the binder transaction() function of the Android kernel. This could allow an attacker to escalate their privileges locally without needing additional execution privileges. User interaction is not required for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-787

Related Identifiers

BDU:2021-05739

CVE-2020-0041

Affected Products

Android Kernel

CVE-2020-0041

Weakness Enumeration

Related Identifiers

Affected Products

References · 27