Multuiple vulnerabilities in Google Pixel
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 5 |
| CVE-ID | CVE-2022-20459 CVE-2022-20460 CVE-2022-25674 CVE-2022-25676 CVE-2022-25679 |
| CWE-ID | CWE-119 CWE-310 CWE-125 CWE-284 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
Pixel Mobile applications / Mobile firmware & hardware |
| Vendor |
Security Bulletin
This security bulletin contains information about 5 vulnerabilities.
1) Buffer overflow
EUVDB-ID: #VU69032
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-20459
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local application to escalate privileges on the system.
The vulnerability exists due to a boundary error within the Titan M component. A local application can trigger memory corruption and execute arbitrary code with elevated privileges.
Install update from vendor's website.
Vulnerable software versionsPixel: 12L 2022-06-05 - 12L 2022-10-05
CPE2.3- cpe:2.3:a:google:pixel:12L:2022-10-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-08-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-09-05:*:*:*:*:*:
http://source.android.com/docs/security/bulletin/pixel/2022-11-01
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Buffer overflow
EUVDB-ID: #VU69033
Risk: Low
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-20460
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a local application to escalate privileges on the system.
The vulnerability exists due to a boundary error within the Titan M component. A local application can trigger memory corruption and execute arbitrary code with elevated privileges.
Install update from vendor's website.
Vulnerable software versionsPixel: 12L 2022-06-05 - 12L 2022-10-05
CPE2.3- cpe:2.3:a:google:pixel:12L:2022-10-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-08-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-09-05:*:*:*:*:*:
http://source.android.com/docs/security/bulletin/pixel/2022-11-01
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Cryptographic issues
EUVDB-ID: #VU69018
Risk: Medium
CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-25674
CWE-ID:
CWE-310 - Cryptographic Issues
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform MitM attack.
The vulnerability exists due to an error in WLAN during the group key handshake of the WPA/WPA2 protocol. A remote attacker can perform MitM attack.
Install update from vendor's website.
Vulnerable software versionsPixel: 12L 2022-06-05 - 12L 2022-10-05
CPE2.3- cpe:2.3:a:google:pixel:12L:2022-10-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-08-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-09-05:*:*:*:*:*:
http://source.android.com/docs/security/bulletin/pixel/2022-11-01
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Out-of-bounds read
EUVDB-ID: #VU69017
Risk: Medium
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-25676
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition when processing avi files within the Video component. A remote attacker can create a specially crafted avi file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsPixel: 12L 2022-06-05 - 12L 2022-10-05
CPE2.3- cpe:2.3:a:google:pixel:12L:2022-10-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-08-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-09-05:*:*:*:*:*:
http://source.android.com/docs/security/bulletin/pixel/2022-11-01
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Improper access control
EUVDB-ID: #VU69019
Risk: Low
CVSSv3.1: 2.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-25679
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local application to perform a denial of service (DoS) attack.
The vulnerability exists due to improper access restrictions to broadcast receivers within the Video component. A local application can perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionsPixel: 12L 2022-06-05 - 12L 2022-10-05
CPE2.3- cpe:2.3:a:google:pixel:12L:2022-10-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-08-05:*:*:*:*:*:
- cpe:2.3:a:google:pixel:12L:2022-09-05:*:*:*:*:*:
http://source.android.com/docs/security/bulletin/pixel/2022-11-01
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
