exploitDog

GHSA-f396-p774-5c2p

Опубликовано: 16 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

In kbase_mem_alias of mali_kbase_mem_linux.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-215001024References: N/A

In kbase_mem_alias of mali_kbase_mem_linux.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-215001024References: N/A

Ссылки

EPSS

Процентиль: 84%

0.02143

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2022-20186

CVSS3: 7.8

nvd

больше 3 лет назад

In kbase_mem_alias of mali_kbase_mem_linux.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-215001024References: N/A

BDU:2022-05663

CVSS3: 7.8

fstec

больше 3 лет назад

Уязвимость функции kbase_mem_alias (mali_kbase_mem_linux.c) ядра операционных систем Android, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код

EPSS

Процентиль: 84%

0.02143

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-20