Embedded System Vulnerabilities
A focused list of vulnerabilities relevant to embedded and IoT devices.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2020-0085 | In setBluetoothTethering of PanService.java, there is a possible permission bypass due to a missing permission check. T… | High (7.8) | 2020-03-10 | Environment Specific |
| CVE-2020-0084 | In several functions of NotificationManagerService.java, there are missing permission checks. This could lead to local … | High (7.8) | 2020-03-10 | Environment Specific |
| CVE-2020-0066 | In the netlink driver, there is a possible out of bounds write due to a race condition. This could lead to local escala… | Medium (6.4) | 2020-03-10 | Environment Specific |
| CVE-2020-0063 | In SurfaceFlinger, it is possible to override UI confirmation screen protected by the TEE. This could lead to local esc… | High (7.3) | 2020-03-10 | Environment Specific |
| CVE-2020-0062 | In Euicc, there is a possible information disclosure due to an included test Certificate. This could lead to remote inf… | High (7.5) | 2020-03-10 | Environment Specific |