HIGH🚩 CISA KEV⚡ EXPLOIT🇵🇱 Wersja polska

CVE-2020-0069

CVSS 7.8v3.1pub. 2020-03-10upd. 2025-10-23

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Google Android

    OS
    Google
    wszystkie wersje
  • Huawei Berkeley L09

    HW
    Huawei
    wszystkie wersje
  • Huawei Berkeley L09 Firmware

    OS
    Huawei
    < 10.0.0.177\(c10e3r1p4\)
  • Huawei Columbia Al10b

    HW
    Huawei
    wszystkie wersje
  • Huawei Columbia Al10b Firmware

    OS
    Huawei
    < 10.0.0.178\(c00e178r1p4\)
  • Huawei Columbia L29d

    HW
    Huawei
    wszystkie wersje
  • Huawei Columbia L29d Firmware

    OS
    Huawei
    < 10.0.0.177\(c10e4r1p4\)< 10.0.0.177\(c432e3r1p4\)
  • Huawei Columbia Tl00b

    HW
    Huawei
    wszystkie wersje
  • Huawei Columbia Tl00b Firmware

    OS
    Huawei
    < 10.0.0.178\(c01e178r1p4\)
  • Huawei Columbia Tl00d

    HW
    Huawei
    wszystkie wersje
  • Huawei Columbia Tl00d Firmware

    OS
    Huawei
    < 10.0.0.178\(c01e178r1p4\)
  • Huawei Cornell Al00a

    HW
    Huawei
    wszystkie wersje
  • Huawei Cornell Al00a Firmware

    OS
    Huawei
    < 9.1.0.340\(c00e333r1p1t8\)
  • Huawei Cornell Tl10b

    HW
    Huawei
    wszystkie wersje
  • Huawei Cornell Tl10b Firmware

    OS
    Huawei
    < 9.1.0.340\(c01e333r1p1t8\)
  • Huawei Dura Al00a

    HW
    Huawei
    wszystkie wersje
  • Huawei Dura Al00a Firmware

    OS
    Huawei
    < 1.0.0.190\(c00\)
  • Huawei Honor 20 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 20 Pro Firmware

    OS
    Huawei
    < 10.0.0.202\(c10e3r3p2\)< 10.0.0.194\(c636e3r3p1\)
  • Huawei Honor 8a

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 8a Firmware

    OS
    Huawei
    < 9.1.0.291\(c432e5r2p1\)< 9.1.0.291\(c636e4r4p1\)< 9.1.0.291\(c185e3r4p1\)< 9.1.0.297\(c605e4r4p2\)
  • Huawei Honor View 20

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor View 20 Firmware

    OS
    Huawei
    < 10.0.0.201\(c10e5r4p3\)< 10.0.0.198\(c432e10r3p4\)< 10.0.0.200\(c185e3r3p3\)
  • Huawei Jakarta Al00a

    HW
    Huawei
    wszystkie wersje
  • Huawei Jakarta Al00a Firmware

    OS
    Huawei
    < 9.1.0.251\(c00e106r2p2\)
  • Huawei Katyusha Al00a

    HW
    Huawei
    wszystkie wersje
  • Huawei Katyusha Al00a Firmware

    OS
    Huawei
    < 9.1.0.146\(c00e131r2p2\)
  • Huawei Katyusha Al10a

    HW
    Huawei
    wszystkie wersje
  • Huawei Katyusha Al10a Firmware

    OS
    Huawei
    < 9.1.0.160\(c00e150r1p7\)
  • Huawei Madrid Al00a

    HW
    Huawei
    wszystkie wersje

CISA KEV — detailsi

Vendori
MediaTek
Producti
Multiple Chipsets
Added to KEVi
November 3, 2021
Remediation deadline (US Federal)i
May 3, 2022(overdue)
Required action (CISA)i

Apply updates per vendor instructions.

CISA descriptioni

Multiple MediaTek chipsets contain an insufficient input validation vulnerability and have missing SELinux restrictions in the Command Queue drivers ioctl handlers. This causes an out-of-bounds write leading to privilege escalation. This vulnerability was observed chained with CVE-2019-2215 and CVE-2020-0041 under exploit chain "AbstractEmu."

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
CISA DEADLINE: 3 maja 2022
CWE
References

Related vulnerabilities

CVE-2020-16010CRITICAL9.6⚠ KEVten sam produkt

Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4240.185 allowed a remote attacker who ha...

CVE-2016-1019CRITICAL9.8⚠ KEVten sam produkt

Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application cr...

CVE-2026-13851CRITICAL9.1ten sam produkt

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...

CVE-2026-13852CRITICAL9.1ten sam produkt

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...

CVE-2026-14106CRITICAL9.6ten sam produkt

Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed ...