ghsa-9g6j-qqxr-q6r6
Vulnerability from github
Published
2022-12-21 18:30
Modified
2022-12-21 18:30
Severity
Details
In fillSetupDataCallInfo_V1_6 of ril_service_1_6.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-243509750References: N/A
{ "affected": [], "aliases": [ "CVE-2022-42525" ], "database_specific": { "cwe_ids": [ "CWE-787" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2022-12-16T16:15:00Z", "severity": "MODERATE" }, "details": "In fillSetupDataCallInfo_V1_6 of ril_service_1_6.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-243509750References: N/A", "id": "GHSA-9g6j-qqxr-q6r6", "modified": "2022-12-21T18:30:24Z", "published": "2022-12-21T18:30:24Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42525" }, { "type": "WEB", "url": "https://source.android.com/security/bulletin/pixel/2022-12-01" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
Loading...