Vulnerabilities > CVE-2019-20785 - Use of Uninitialized Resource vulnerability in Google Android 8.0/8.1

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
google
CWE-908

Summary

An issue was discovered on LG mobile devices with Android OS 8.0 and 8.1 software for the DTAG carrier. RILD in the radio layer uses an uninitialized variable. The LG ID is LVE-SMP-180013 (January 2019).

Vulnerable Configurations

Part Description Count
OS
Google
2

Common Weakness Enumeration (CWE)