Vulnerability Data

CVE-2020-0020

Track security vulnerabilities

In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-143118731

Published at
2020-02-13
703 days ago
Modified
2020-02-13
703 days ago
2020
Year
The year of the turtle

https://source.android.com/security/bulletin/2020-02-01

MISC:https://source.android.com/security/bulletin/2020-02-01

Read More about itMore info

Vulnerability RAW

{
	"Title": {
		"_text": "CVE-2020-0020"
	},
	"Notes": {
		"Note": [
			{
				"_text": "In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-143118731"
			},
			{
				"_text": "2020-02-13"
			},
			{
				"_text": "2020-02-13"
			}
		]
	},
	"CVE": {
		"_text": "CVE-2020-0020"
	},
	"References": {
		"Reference": {
			"URL": {
				"_text": "https://source.android.com/security/bulletin/2020-02-01"
			},
			"Description": {
				"_text": "MISC:https://source.android.com/security/bulletin/2020-02-01"
			}
		}
	}
}