VDB
CVE-2020-0463
CVE-2020-0463
PUBLISHED
In Google Android existieren mehrere Schwachstellen. Sie befinden sich in den Komponenten "Framework", "Google Play", "Media Framework", "MediaTek", "Qualcomm closed-source components", "Qualcomm components", "Kernel" und "System". Ein Angreifer kann dieses nutzen und seine Privilegien erweitern, Code zur Ausführung bringen, vertrauliche Daten einsehen, sowie einen Denial of Service Zustand herbeiführen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich.
EPSS 1.62% · 82.2th percentile
Risk Scores
EPSS Score
1.62%
82.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Avaya | Avaya Web License Manager | |
| Avaya | Avaya Aura Session Manager | |
| Google Android 8.1 | ||
| Avaya | Avaya Aura Communication Manager | |
| Google Android 10 | ||
| Google Android 9 | ||
| IBM | IBM Security Guardium 11.5 | |
| RIM | BlackBerry BlackBerry | |
| Avaya | Avaya Aura Experience Portal | |
| Google Android 8.0 | ||
| IBM | IBM Security Guardium 11.4 | |
| Red Hat | Red Hat Enterprise Linux | |
| SUSE | SUSE Linux | |
| Oracle | Oracle Linux | |
| Avaya | Avaya Aura Application Enablement Services | |
| Google Android 11 | ||
| Avaya | Avaya Aura System Manager |
Exploit Intelligence
- nanopathi/system_bt_AOSP10_r33_CVE-2020-0463 (github-poc)
- nanopathi/system_bt_AOSP10_r33_CVE-2020-0463 (github-poc)
- nanopathi/system_bt_AOSP10_r33_CVE-2020-0463 (github-poc)
- nanopathi/system_bt_AOSP10_r33_CVE-2020-0463 (github-poc)
- nanopathi/system_bt_AOSP10_r33_CVE-2020-0463 (github-poc)
- https://source.android.com/security/bulletin/2020-12-01 (circl)
Timeline
- Dec 8, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 12, 2022 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2020/wid-sec-w-2022-2387.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2387 advisory
- https://www.ibm.com/support/pages/node/6999317 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-May/015022.html advisory
- https://downloads.avaya.com/css/P8/documents/101075693 advisory
- https://access.redhat.com/errata/RHSA-2021:1093 advisory
- http://linux.oracle.com/errata/ELSA-2021-1093.html advisory
- http://linux.oracle.com/errata/ELSA-2021-9164.html advisory
- https://access.redhat.com/errata/RHSA-2021:2099 advisory
- https://source.android.com/security/bulletin/2020-12-01 advisory
- https://source.android.com/security/bulletin/pixel/2020-12-01 advisory
- http://support.blackberry.com/kb/articleDetail?language=en_US&articleNumber=000072551 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2020-December/008120.html advisory
- https://access.redhat.com/errata/RHSA-2021:2106 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-February/008323.html advisory
- https://access.redhat.com/errata/RHSA-2021:0686 advisory
- https://access.redhat.com/errata/RHSA-2021:0689 advisory
- https://access.redhat.com/errata/RHSA-2021:0763 advisory
- https://access.redhat.com/errata/RHSA-2021:0774 advisory
- https://access.redhat.com/errata/RHSA-2021:0765 advisory
…and 8 more