CVE-2022-20159
Description
In asn1_ec_pkey_parse of acropora/crypto/asn1_common.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-210971465References: N/A
CvssV3 impact
Could not find any metrics
CvssV2 impact
AccessComplexity | LOW |
ConfidentialityImpact | COMPLETE |
AvailabilityImpact | NONE |
IntegrityImpact | NONE |
BaseScore | 4.900000095367432 |
VectorString | AV:L/AC:L/Au:N/C:C/I:N/A:N |
Version | 2.0 |
AccessVector | LOCAL |
Authentication | NONE |