Vulnerabilities > CVE-2022-20073 - Integer Underflow (Wrap or Wraparound) vulnerability in Google Android 10.0/11.0/12.0
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
In preloader (usb), there is a possible out of bounds write due to a integer underflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06160841; Issue ID: ALPS06160841.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 3 | |
Hardware | Mediatek
| 43 |