Out of Bounds Read Vulnerability in l2cble_process_sig_cmd of l2c_ble.cc

Out of Bounds Read Vulnerability in l2cble_process_sig_cmd of l2c_ble.cc

CVE-2022-20010 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure through Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid ID: A-213519176

Learn more about our Cis Benchmark Audit For Google Android.