CVE-2022-20584

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to improper input validation in the page number of shared mem.c, which could lead to code execution in the secure world. This may result in local escalation of privilege without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android kernel, consider restricting access to the shared mem.c module to minimize the risk of exploitation until a patch is available. As a temporary workaround, consider implementing additional input validation for the page number in shared mem.c to prevent potential code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.