CVE-2022-20162
Description
In asn1_p256_int of crypto/asn1.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-223492713References: N/A
CvssV3 impact
Could not find any metrics
CvssV2 impact
AccessComplexity | LOW |
ConfidentialityImpact | COMPLETE |
AvailabilityImpact | NONE |
IntegrityImpact | NONE |
BaseScore | 4.900000095367432 |
VectorString | AV:L/AC:L/Au:N/C:C/I:N/A:N |
Version | 2.0 |
AccessVector | LOCAL |
Authentication | NONE |