← back
CVE-2022-20235

CVE-2022-20235

CVSS 5.5 MEDIUMEPSS 0.1%CWE-787
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 Jan 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The PowerVR GPU kernel driver maintains an "Information Page" used by its cache subsystem. This page can only be written by the GPU driver itself, but prior to DDK 1.18 however, a user-space program could write arbitrary data to the page, leading to memory corruption issues.Product: AndroidVersions: Android SoCAndroid ID: A-259967780
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected products
n/a · Android