In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0, Android-8.1, Android-9, and Android-10 Android ID: A-142558228
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/security/bulletin/2020-01-01 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2020-01-08T18:34:50
Updated: 2024-08-04T05:47:40.264Z
Reserved: 2019-10-17T00:00:00
Link: CVE-2020-0008
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-01-08T19:15:13.313
Modified: 2022-01-01T20:02:12.627
Link: CVE-2020-0008
Redhat
No data.