Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2020-0026 | In Parcel::continueWrite of Parcel.cpp, there is possible memory corruption due to a use after free. This could lead to… | High (7.8) | 2020-02-13 | Environment Specific |
| CVE-2020-0023 | In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user contacts over bluetooth … | Medium (5.5) | 2020-02-13 | Environment Specific |
| CVE-2020-0022 | In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds ca… | High (8.8) | 2020-02-13 | Environment Specific |
| CVE-2020-0021 | In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a miss… | Medium (6.5) | 2020-02-13 | Environment Specific |
| CVE-2020-0020 | In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files… | Medium (5.5) | 2020-02-13 | Environment Specific |