Vulnerabilities > CVE-2019-20785 - Use of Uninitialized Resource vulnerability in Google Android 8.0/8.1

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

google

CWE-908

NVD

Published: 2020-04-17

Updated: 2020-04-24

Summary

An issue was discovered on LG mobile devices with Android OS 8.0 and 8.1 software for the DTAG carrier. RILD in the radio layer uses an uninitialized variable. The LG ID is LVE-SMP-180013 (January 2019).

Vulnerable Configurations

Part	Description	Count
OS	Google Google Android 8.0 Google Android 8.1	2

Common Weakness Enumeration (CWE)

CWE-908 - Use of Uninitialized Resource

References

https://lgsecurity.lge.com/