Login Sign Up

CVE-2020-0123

9.8 CRITICAL

📋 TL;DR

This CVE describes an out-of-bounds write vulnerability in Android System-on-Chip (SoC) components due to incorrect bounds checking. It allows attackers to write data beyond allocated memory boundaries, potentially leading to remote code execution or system crashes. All Android devices using affected SoC versions are vulnerable.

💻 Affected Systems

Products:
  • Android devices with affected System-on-Chip components
Versions: Android SoC versions prior to September 2020 security patches
Operating Systems: Android
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerability is in SoC firmware/drivers, affecting multiple device manufacturers using the same chipset.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with kernel privileges leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Device crash/reboot (denial of service) or limited memory corruption leading to instability.

🟢

If Mitigated

No impact if patched or if exploit attempts are blocked by security controls.

🌐 Internet-Facing: HIGH - Android devices often connect to untrusted networks and download apps from various sources.
🏢 Internal Only: MEDIUM - Still significant risk from malicious apps or compromised internal resources.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Out-of-bounds write vulnerabilities often require specific memory manipulation but can be exploited via malicious apps or network vectors.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: September 2020 Android Security Bulletin patches

Vendor Advisory: https://source.android.com/security/bulletin/2020-09-01

Restart Required: Yes

Instructions:

1. Check for system updates in Settings > System > Advanced > System update. 2. Install September 2020 security patch. 3. Reboot device. 4. Verify patch installation in Settings > About phone > Android security patch level.

🔧 Temporary Workarounds

Disable unknown sources

android

Prevent installation of apps from outside Google Play Store

Settings > Security > Install unknown apps > Disable for all apps

Network segmentation

all

Isolate Android devices on separate network segments

🧯 If You Can't Patch

  • Isolate affected devices on restricted network segments
  • Implement application allowlisting to prevent untrusted app execution

🔍 How to Verify

Check if Vulnerable:

Check Android security patch level in Settings > About phone > Android security patch level. If earlier than September 2020, device is vulnerable.

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify security patch level shows 'September 5, 2020' or later in Settings > About phone > Android security patch level.

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • Unexpected process crashes
  • Memory corruption warnings in dmesg

Network Indicators:

  • Unusual outbound connections from Android devices
  • Suspicious app download patterns

SIEM Query:

source="android_logs" AND ("kernel panic" OR "segmentation fault" OR "out of bounds")

📊 Metadata

CVE ID: CVE-2020-0123
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: September 17, 2020
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-0123, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)