CVE-2020-0256
Description
In LoadPartitionTable of gpt.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege when inserting a malicious USB device, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-8.0Android ID: A-152874864
Risk Information
Base Score
6.8
MODERATE
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.059
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| gdisk security update (RLSA-2022:7700) gdisk-1.0.3-11.el8.x86_64.rpm | Linux |
| Gdisk update (ELSA-2022-7700) gdisk-1.0.3-11.el8.x86_64.rpm | Linux |
| Moderate: gdisk security update gdisk-1.0.3-11.el8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234