CVE-2020-0367 – CVE-2020-0367 is an out-of-bounds write vulnera... (How to Fix)

Q: What is the severity of CVE-2020-0367?

CVE-2020-0367 has a CVSS score of 9.1 (CRITICAL). CVE-2020-0367 is an out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitrary code or cause denial of service. This affects Android devices using vulnerable SoC implementations. The vulnerability stems from missing bounds checks in memory operations.

📋 TL;DR

CVE-2020-0367 is an out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitrary code or cause denial of service. This affects Android devices using vulnerable SoC implementations. The vulnerability stems from missing bounds checks in memory operations.

💻 Affected Systems

Products:

Android devices with vulnerable SoC implementations

Versions: Android SoC versions prior to October 2020 security patch

Operating Systems: Android

Default Config Vulnerable: ⚠️ Yes

Notes: Specific SoC vendors and models may vary; check device manufacturer advisories.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete device compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Local privilege escalation allowing apps to gain elevated permissions or cause system crashes.

🟢

If Mitigated

Limited impact with proper app sandboxing and SELinux policies preventing privilege escalation.

🌐 Internet-Facing: MEDIUM - Requires local access or malicious app installation, but could be chained with other vulnerabilities.

🏢 Internal Only: HIGH - Local attackers or malicious apps could exploit this for privilege escalation.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires local access or malicious app installation; no public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: October 2020 Android Security Patch Level or later

Vendor Advisory: https://source.android.com/security/bulletin/2020-10-01

Restart Required: Yes

Instructions:

1. Check for system updates in Settings > System > Advanced > System update. 2. Install October 2020 or later security patch. 3. Reboot device after installation.

🔧 Temporary Workarounds

Restrict app installations

all

Only install apps from trusted sources like Google Play Store

Enable Google Play Protect

android

Ensure Google Play Protect is active to detect malicious apps

🧯 If You Can't Patch

Isolate affected devices from sensitive networks and data
Implement strict app whitelisting policies and monitor for suspicious activity

🔍 How to Verify

Check if Vulnerable:

Check Android security patch level in Settings > About phone > Android version > Security patch level

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify security patch level shows October 2020 or later date

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
SELinux denials for privilege escalation attempts
App crash reports with memory corruption signatures

Network Indicators:

Unusual outbound connections from system processes
Anomalous privilege escalation patterns

SIEM Query:

source="android_logs" AND ("kernel panic" OR "segmentation fault" OR "memory corruption")

📊 Metadata

CVE ID: CVE-2020-0367

CVSS v3 Score: 9.1 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE: CWE-787

Published: October 14, 2020

Last Updated: November 21, 2024

🔗 References

https://source.android.com/security/bulletin/2020-10-01 Vendor Advisory
https://source.android.com/security/bulletin/2020-10-01 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-0367, you might also want to check these: