CVE-2020-0144

Name of the Vulnerable Software and Affected Versions Android versions Android-10

Description The issue is related to a possible out of bounds read in the btm proc sp req evt function of btm sec.cc due to a missing bounds check. This could lead to local information disclosure via compromised device firmware, with System execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android version Android-10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.