CVE-2020-0004

MEDIUM

Android <10 - DoS

Title source: llm

Description

In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-120847476

References (1)

[Patch, Vendor Advisory] https://source.android.com/security/bulletin/2020-01-01

Scores

CVSS v3 5.5

EPSS 0.0004

EPSS Percentile 10.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-755

Status published

Affected Products (4)

google/android

Timeline

Published Jan 08, 2020

Tracked Since Feb 18, 2026