CVE-2020-0069 - In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write

CVE-2020-0069

Summary

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754

References

Vulnerable Configurations

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 27-05-2020 - 12:15)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

confirm	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-mtk-en
misc	https://source.android.com/security/bulletin/2020-03-01

Last major update

27-05-2020 - 12:15

Published

10-03-2020 - 20:15

Last modified

27-05-2020 - 12:15