CVE-2022-20239

Опубликовано: 10 авг. 2022

Источник: nvd

CVSS3: 9.8

CVSS3: 4.2

EPSS Низкий

Описание

remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID: A-233972091

Ссылки

https://source.android.com/security/bulletin/2022-08-01
Vendor Advisory
https://source.android.com/security/bulletin/2022-08-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00073

Низкий

9.8 Critical

CVSS3

4.2 Medium

CVSS3

Дефекты

CWE-610

CWE-269

Связанные уязвимости

GHSA-px2h-r39c-38r8

CVSS3: 9.8

github

больше 3 лет назад

'remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID: A-233972091

EPSS

Процентиль: 23%

0.00073

Низкий

9.8 Critical

CVSS3

4.2 Medium

CVSS3

Дефекты

CWE-610

CWE-269