CVE-2022-20182

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a missing permission check in the handle ramdump function of pixel loader.c, which could allow the creation of a ramdump of non-secure memory. This may lead to local information disclosure, requiring System execution privileges for exploitation. No user interaction is needed for exploitation.

Recommendations For Android kernel, consider applying a patch that includes a permission check in the handle ramdump function of pixel loader.c to prevent unauthorized access to non-secure memory.