{"vulnerability": "CVE-2022-2040", "sightings": [{"uuid": "49876494-e691-4a25-9e37-000f31c06643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20401", "type": "seen", "source": "https://t.me/cibsecurity/47982", "content": "\u203c CVE-2022-20401 \u203c\n\nIn SAEMM_RetrievEPLMNList of SAEMM_ContextManagement.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure post-authentication with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-226446030References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:38:08.000000Z"}, {"uuid": "b3a3ae24-50f4-48d1-b062-e7eef6311b99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20409", "type": "seen", "source": "https://t.me/cibsecurity/51212", "content": "\u203c CVE-2022-20409 \u203c\n\nIn io_identity_cow of io_uring.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-238177383References: Upstream kernel\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-12T00:32:23.000000Z"}, {"uuid": "eb0dbce6-fa94-444b-ba23-aad5da357b0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20406", "type": "seen", "source": "https://t.me/cibsecurity/47961", "content": "\u203c CVE-2022-20406 \u203c\n\nProduct: AndroidVersions: Android kernelAndroid ID: A-184676385References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:32:01.000000Z"}, {"uuid": "a60f6b23-f482-4abb-8a59-3d882e74703d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20408", "type": "seen", "source": "https://t.me/cibsecurity/47980", "content": "\u203c CVE-2022-20408 \u203c\n\nProduct: AndroidVersions: Android kernelAndroid ID: A-204782372References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:38:06.000000Z"}, {"uuid": "9a2c66e2-5512-411d-801e-cda901dbe7f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20400", "type": "seen", "source": "https://t.me/cibsecurity/47975", "content": "\u203c CVE-2022-20400 \u203c\n\nIn cd_CodeMsg of cd_codec.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-225178325References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:32:18.000000Z"}, {"uuid": "5424b0c2-22b7-41e7-9949-6c054ab3a480", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20409", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/821", "content": "https://github.com/Markakd/bad_io_uring\nAndroid kernel exploitation for CVE-2022-20409\n#github", "creation_timestamp": "2023-08-07T05:30:26.000000Z"}, {"uuid": "6ea2a136-c5ab-4ed5-adf8-4e03eaf5d27b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20404", "type": "seen", "source": "https://t.me/cibsecurity/47990", "content": "\u203c CVE-2022-20404 \u203c\n\nProduct: AndroidVersions: Android kernelAndroid ID: A-205714161References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:38:17.000000Z"}, {"uuid": "1e0b135a-cb56-4285-8b41-141c4a733849", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20403", "type": "seen", "source": "https://t.me/cibsecurity/47989", "content": "\u203c CVE-2022-20403 \u203c\n\nProduct: AndroidVersions: Android kernelAndroid ID: A-207975764References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:38:16.000000Z"}, {"uuid": "698a05d4-80fd-499a-a46b-df786fd7ae85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20407", "type": "seen", "source": "https://t.me/cibsecurity/47997", "content": "\u203c CVE-2022-20407 \u203c\n\nProduct: AndroidVersions: Android kernelAndroid ID: A-210916981References: N/A\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T18:38:26.000000Z"}, {"uuid": "2c822e69-c0cd-42aa-b2a8-c48612caecba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-20409", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8802", "content": "#Offensive_security\nBlack Hat USA 2023:\nAndroid kernel exploitation for CVE-2022-20409\nhttps://github.com/Markakd/bad_io_uring", "creation_timestamp": "2023-08-07T01:53:06.000000Z"}]}