CVE-2020-0431medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
In kbd_keycode of keyboard.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-144161459
References
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00021.html
https://source.android.com/security/bulletin/pixel/2020-09-01
Details
Source: MITRE
Published: 2020-09-17
Updated: 2021-02-03
Type: CWE-787
Risk Information
CVSS v2
Base Score: 4.6
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 3.9
Severity: MEDIUM
CVSS v3
Base Score: 6.7
Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 0.8
Severity: MEDIUM
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 153271 | EulerOS 2.0 SP2 : kernel (EulerOS-SA-2021-2392) | Nessus | Huawei Local Security Checks | high |
| 151419 | EulerOS Virtualization 3.0.2.2 : kernel (EulerOS-SA-2021-2140) | Nessus | Huawei Local Security Checks | high |
| 151229 | EulerOS Virtualization 3.0.6.6 : kernel (EulerOS-SA-2021-2040) | Nessus | Huawei Local Security Checks | high |
| 150536 | SUSE SLES11 Security Update : kernel (SUSE-SU-2021:14630-1) | Nessus | SuSE Local Security Checks | high |
| 149914 | Oracle Linux 8 : kernel (ELSA-2021-1578) | Nessus | Oracle Linux Local Security Checks | high |
| 149874 | CentOS 8 : kernel (CESA-2021:1578) | Nessus | CentOS Local Security Checks | high |
| 149670 | RHEL 8 : kernel (RHSA-2021:1578) | Nessus | Red Hat Local Security Checks | high |
| 149660 | RHEL 8 : kernel-rt (RHSA-2021:1739) | Nessus | Red Hat Local Security Checks | high |
| 147690 | EulerOS Virtualization 2.9.0 : kernel (EulerOS-SA-2021-1642) | Nessus | Huawei Local Security Checks | high |
| 147512 | EulerOS Virtualization 2.9.1 : kernel (EulerOS-SA-2021-1604) | Nessus | Huawei Local Security Checks | high |
| 147204 | Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9085) | Nessus | Oracle Linux Local Security Checks | high |
| 147203 | Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9086) | Nessus | Oracle Linux Local Security Checks | high |
| 146993 | Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9079) | Nessus | Oracle Linux Local Security Checks | high |
| 146282 | openSUSE Security Update : RT kernel (openSUSE-2021-242) | Nessus | SuSE Local Security Checks | high |
| 146181 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-1200) | Nessus | Huawei Local Security Checks | high |
| 145201 | EulerOS 2.0 SP3 : kernel (EulerOS-SA-2021-1079) | Nessus | Huawei Local Security Checks | high |
| 144731 | EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2021-1039) | Nessus | Huawei Local Security Checks | high |
| 144168 | EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-2514) | Nessus | Huawei Local Security Checks | medium |
| 143875 | SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3532-1) | Nessus | SuSE Local Security Checks | high |
| 143857 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3544-1) | Nessus | SuSE Local Security Checks | high |
| 143844 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3225-1) | Nessus | SuSE Local Security Checks | high |
| 143801 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2905-1) | Nessus | SuSE Local Security Checks | high |
| 143784 | SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3014-1) | Nessus | SuSE Local Security Checks | high |
| 143772 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3219-1) | Nessus | SuSE Local Security Checks | high |
| 143708 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2904-1) | Nessus | SuSE Local Security Checks | high |
| 143699 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2907-1) | Nessus | SuSE Local Security Checks | high |
| 143671 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2879-1) | Nessus | SuSE Local Security Checks | medium |
| 143654 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3501-1) | Nessus | SuSE Local Security Checks | high |
| 143639 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3503-1) | Nessus | SuSE Local Security Checks | high |
| 142331 | EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2411) | Nessus | Huawei Local Security Checks | high |
| 142260 | EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2429) | Nessus | Huawei Local Security Checks | high |
| 141388 | openSUSE Security Update : the Linux Kernel (openSUSE-2020-1655) | Nessus | SuSE Local Security Checks | high |
| 141161 | openSUSE Security Update : the Linux Kernel (openSUSE-2020-1586) | Nessus | SuSE Local Security Checks | medium |