CVE-2020-0041

HIGH7.8⚠ KEVEPSS 23.9%

Android Kernel Out-of-Bounds Write Vulnerability

Published: 3/10/2020Modified: 4/28/2026Added to CISA KEV: 11/3/2021

Also known as:DEBIAN-CVE-2020-0041

Description

In binder_transaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-145988638References: Upstream kernel

Affected packages (1)

Debian/linuxfrom 0, < 5.4.6-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH7.8	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-0041