Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2022
CVE-2022-20151
Product: AndroidVersions: Android kernelAndroid ID: A-210712565References: N/A
CVSS Score
7.5
EPSS Score
0.001
Published
2022-06-15
CVE-2022-20152
In the TitanM chip, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-202006198References: N/A
CVSS Score
6.7
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20153
In rcu_cblist_dequeue of rcu_segcblist.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-222091980References: Upstream kernel
CVSS Score
6.7
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20154
In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-174846563References: Upstream kernel
CVSS Score
6.4
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20155
In ipu_core_jqs_msg_transport_kernel_write_sync of ipu-core-jqs-msg-transport.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-176754369References: N/A
CVSS Score
7.0
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20156
In unflatten of GraphicBuffer.cpp, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-212803946References: N/A
CVSS Score
7.8
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20159
In asn1_ec_pkey_parse of acropora/crypto/asn1_common.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-210971465References: N/A
CVSS Score
4.4
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20160
Product: AndroidVersions: Android kernelAndroid ID: A-210083655References: N/A
CVSS Score
9.8
EPSS Score
0.001
Published
2022-06-15
CVE-2022-20162
In asn1_p256_int of crypto/asn1.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-223492713References: N/A
CVSS Score
4.4
EPSS Score
0.0
Published
2022-06-15
CVE-2022-20164
Product: AndroidVersions: Android kernelAndroid ID: A-204891956References: N/A
CVSS Score
9.8
EPSS Score
0.001
Published
2022-06-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved