CVE-2020-0155

HIGH

Android - Out-of-bounds Write in phNxpNciHal_send_ese_hal_cmd

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-0155. PoCs published by Trinadh465.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2020-0155, targeting NXP NFC firmware in Android. The code includes modified NFC service implementations to demonstrate the vulnerability, likely involving improper input validation or memory corruption in the NFC stack.

Description

In phNxpNciHal_send_ese_hal_cmd of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-139736386

Exploits (1)

nomisec WORKING POC
by Trinadh465 · poc
https://github.com/Trinadh465/hardware_nxp_nfc_AOSP10_r33_CVE-2020-0155

This repository contains a proof-of-concept exploit for CVE-2020-0155, targeting NXP NFC firmware in Android. The code includes modified NFC service implementations to demonstrate the vulnerability, likely involving improper input validation or memory corruption in the NFC stack.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NXP NFC Firmware on Android (AOSP 10 r33)
No auth needed
Prerequisites: Physical proximity or NFC access to the target device · Vulnerable NXP NFC firmware version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://source.android.com/security/bulletin/pixel/2020-06-01

Scores

CVSS v3 7.8
EPSS 0.0025
EPSS Percentile 15.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
google/android 10.0
Published Jun 11, 2020
Tracked Since Feb 18, 2026