SecuritySpace - CVE-2022-20132

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2022-20132

Description: In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-188677105References: Upstream kernel

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2022-20132
https://source.android.com/security/bulletin/2022-06-01
https://source.android.com/security/bulletin/2022-06-01

CVE ID:	CVE-2022-20132
Description:	In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-188677105References: Upstream kernel
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2022-20132 https://source.android.com/security/bulletin/2022-06-01 https://source.android.com/security/bulletin/2022-06-01