Possible Remote Denial of Service Vulnerability in RegisterNotificationResponse::GetEvent

Possible Remote Denial of Service Vulnerability in RegisterNotificationResponse::GetEvent

CVE-2020-0196 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

In RegisterNotificationResponse::GetEvent of register_notification_packet.cc, there is a possible abort due to improper input validation. This could lead to remote denial of service of the Bluetooth service, over Bluetooth, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-144066833

Learn more about our Cis Benchmark Audit For Google Android.