exploitDog

CVE-2020-0019

Опубликовано: 14 дек. 2020

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

In the Broadcom Nexus firmware, there is an insecure default password. This could lead to local information disclosure in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-171413798

Ссылки

https://source.android.com/security/bulletin/2020-12-01
Vendor Advisory
https://source.android.com/security/bulletin/2020-12-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 3%

0.00017

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-1188

Связанные уязвимости

GHSA-96p2-7r8j-8q3m

github

больше 3 лет назад

In the Broadcom Nexus firmware, there is an insecure default password. This could lead to local information disclosure in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-171413798

EPSS

Процентиль: 3%

0.00017

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-1188