In setRequirePmfInternal of sta_network.cpp, there is a possible default value being improperly applied due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-142797954
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0083
Reference (s):
- https://source.android.com/security/bulletin/pixel/2020-03-01