Null Pointer Dereference in sdpu_find_most_specific_service_uuid of sdp_utils.cc

Null Pointer Dereference in sdpu_find_most_specific_service_uuid of sdp_utils.cc

CVE-2022-20521 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

In sdpu_find_most_specific_service_uuid of sdp_utils.cc, there is a possible way to crash Bluetooth due to a missing null check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227203684

Learn more about our Cis Benchmark Audit For Google Android.