CVE-2022-20132
CVSS v3.1
4.6 (Medium)
CVSS v2.0
4.9 (Medium)
EPSS
0.04 % (17th)
Affected Products
1
Advisories
23
In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-188677105References: Upstream kernel
Weaknesses
- CWE-125
- Out-of-bounds Read
- CVE Status
- PUBLISHED
- CNA
- Android (associated with Google Inc. or Open Handset Alliance)
- Published Date
-
2022-06-15 13:15:08
(2 years ago) - Updated Date
-
2022-06-23 18:29:49
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...