Vulnetix
Try Vulnetix Request Demo
CVE-2020-0041 PUBLISHED KEV

In binder_transaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-145988638References: Upstream kernel

EPSS 23.86% · 96.0th percentile

Risk Scores

EPSS Score
23.86%
96.0th percentile

Affected Products

VendorProductVersions
Ubuntu:24.04:LTSlinux-raspi-realtime0, 6.8.0-2019.20
Ubuntu:18.04:LTSlinux-gcp-5.30, 5.3.0-1008.9~18.04.1, 5.3.0-1009.10~18.04.1
Ubuntu:20.04:LTSlinux-gke5.4.0-1100.107, 5.4.0-1099.106, 5.4.0-1098.105
Ubuntu:20.04:LTSlinux-gkeop5.4.0-1098.102, 0, 5.4.0-1008.9
Ubuntu:22.04:LTSlinux-riscv5.13.0-1004.4, 5.13.0-1006.6+22.04.1, 0
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1064.67+cvm1.1, 5.4.0-1063.66+cvm3.2, 5.4.0-1063.66+cvm2.2
Ubuntu:18.04:LTSlinux-azure-edge0, 4.18.0-1006.6~18.04.1, 4.18.0-1007.7~18.04.1
Ubuntu:18.04:LTSlinux-gke-5.30, 5.3.0-1011.12~18.04.1
Ubuntu:18.04:LTSlinux-gcp-edge0, 4.18.0-1004.5~18.04.1, 4.18.0-1005.6~18.04.1
Ubuntu:18.04:LTSlinux-azure-5.35.3.0-1012.13~18.04.1, 0, 5.3.0-1007.8~18.04.1
Ubuntu:18.04:LTSlinux-raspi2-5.35.3.0-1017.19~18.04.1, 0
Ubuntu:18.04:LTSlinux-hwe5.3.0-26.28~18.04.1, 4.18.0-14.15~18.04.1, 5.3.0-28.30~18.04.1
Ubuntu:22.04:LTSlinux-intel-iot-realtime0, 5.15.0-1073.75
Ubuntu:16.04:LTSlinux-hwe-edge4.15.0-23.25~16.04.1, 0, 4.8.0-28.30~16.04.1
Ubuntu:18.04:LTSlinux-hwe-edge5.3.0-23.25~18.04.2, 0, 5.0.0-15.16~18.04.1
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:20.04:LTSlinux-gkeop-5.155.15.0-1039.45~20.04.1, 5.15.0-1040.46~20.04.1, 5.15.0-1043.50~20.04.1

Timeline

References

Open in Interactive Console →