CVE-2020-0069

Description from NVD

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754

Information Acquisition Date:2021-04-27T10:37Z
CVSS 2.0: 7.2 HIGH CVSS 3.x: 7.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:L/AC:L/Au:N/C:C/I:C/A:C

NVD References

 https://source.android.com/security/bulletin/2020-03-01
     source:MISC
     tags:Vendor Advisory    
 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-mtk-en
     source:CONFIRM
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Linux(1 tweets)



List of frequently cited URLs

URLNum of Times Referred to
https://reportcybercrime.com/1368

Information from Twitter

User URL Info Source Date
Bahamut0x414141 https://source.android.com/security/bulletin/2016-05-01 Source Bahamut0x414141 1455208358126915587 2021/11/02
Bahamut0x414141 https://source.android.com/security/bulletin/2015-09-01 Source Bahamut0x414141 1455208358126915587 2021/11/02
Bahamut0x414141 https://source.android.com/security/bulletin/2019-10-01 Source Bahamut0x414141 1455208358126915587 2021/11/02
Bahamut0x414141 https://source.android.com/security/bulletin/2020-03-01 Source Bahamut0x414141 1455208358126915587 2021/11/02
Bahamut0x414141 https://source.android.com/security/bulletin/2020-03-01 Source Bahamut0x414141 1455208358126915587 2021/11/02
0E800 https://www.csoonline.com/article/3639059/stealthy-trojan-t... Source 0E800            1457891865877905414 2021/11/09
VulmonFeeds http://vulmon.com/vulnerabilitydetails?qid=CVE-2020-0069 Source VulmonFeeds      1460897765886771201 2021/11/17

List of frequently cited URLs

URLNum of Times Referred to
reportcybercrime.com1368

Information from Twitter

User URL Info Source
Bahamut0x414141 source.android.com Show Tweet
Bahamut0x414141 source.android.com Show Tweet
Bahamut0x414141 source.android.com Show Tweet
Bahamut0x414141 source.android.com Show Tweet
Bahamut0x414141 source.android.com Show Tweet
0E800 csoonline.com Show Tweet
VulmonFeeds vulmon.com Show Tweet

GitHub Search Results: Up to 10
NameURL
quarkslab/CVE-2020-0069_poc https://github.com/quarkslab/CVE-2020-0069_poc
TheRealJunior/mtk-su-reverse-cve-2020-0069 https://github.com/TheRealJunior/mtk-su-reverse-cve-2020-0069
R0rt1z2/AutomatedRoot https://github.com/R0rt1z2/AutomatedRoot
yanglingxi1993/CVE-2020-0069 https://github.com/yanglingxi1993/CVE-2020-0069

GitHub Search Results: Up to 10
NameURL
quarkslab/CVE-2020-0069_poc github.com
TheRealJunior/mtk-su-reverse-cve-2020-0069 github.com
R0rt1z2/AutomatedRoot github.com
yanglingxi1993/CVE-2020-0069 github.com

2021/11/17 Score : 1
Added Har-sia Database : 2020/03/03
Last Modified : 2021/11/17
Highest Scored Date : 2020/03/26
Highest Score : 7