Possible Permanent Denial-of-Service Vulnerability in removeUnusedPackagesLPw of PackageManagerService.java

CVE-2020-0021 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. This could lead to remote denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-141413692

Learn more about our Cis Benchmark Audit For Google Android.