exploitDog

CVE-2022-20545

Опубликовано: 16 дек. 2022

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

In bindArtworkAndColors of MediaControlPanel.java, there is a possible way to crash the phone due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-239368697

Ссылки

https://source.android.com/security/bulletin/pixel/2022-12-01
Patch
Vendor Advisory
https://source.android.com/security/bulletin/pixel/2022-12-01
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00586

Низкий

7.5 High

CVSS3

Дефекты

CWE-20

CWE-20

Связанные уязвимости

GHSA-r5gm-8h2h-hvrr

CVSS3: 7.5

github

около 3 лет назад

In bindArtworkAndColors of MediaControlPanel.java, there is a possible way to crash the phone due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-239368697

EPSS

Процентиль: 69%

0.00586

Низкий

7.5 High

CVSS3

Дефекты

CWE-20

CWE-20