CVE-2022-20379

Severity CVSS v4.0:
Pending analysis
Type:
CWE-416 Use After Free
Publication date:
11/08/2022
Last modified:
13/08/2022

Description

In lwis_buffer_alloc of lwis_buffer.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-209436980References: N/A

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools