CVE-2022-42510

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a possible out of bounds read in the StringsRequestData::encode function of requestdata.cpp due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Recommendations For Android kernel, consider applying the necessary security patches to fix the improper input validation issue in the StringsRequestData::encode function. As a temporary workaround, restrict access to sensitive system resources to minimize the risk of exploitation.