CVE-2020-0201

CRITICAL

Android 10 - Credential Leak via WifiConfigController Confused Deputy

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-0201. PoCs published by uthrasri, Trinadh465.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2020-0201, targeting Android's Settings app. The exploit involves manipulating intent extras to bypass security checks, potentially leading to privilege escalation or unauthorized actions.

Description

In showSecurityFields of WifiConfigController.java there is a possible credential leak due to a confused deputy. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-143601727

Exploits (2)

nomisec WORKING POC
by uthrasri · poc
https://github.com/uthrasri/Packages_app_settings_CVE-2020-0201

This repository contains a proof-of-concept exploit for CVE-2020-0201, targeting Android's Settings app. The exploit involves manipulating intent extras to bypass security checks, potentially leading to privilege escalation or unauthorized actions.

Classification
Working Poc 80%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Android Settings app (specific version not specified)
No auth needed
Prerequisites: Access to the target Android device · Ability to send malicious intents to the Settings app
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC
by Trinadh465 · poc
https://github.com/Trinadh465/packages_apps_Settings_CVE-2020-0201

This repository contains a proof-of-concept exploit for CVE-2020-0201, a vulnerability in Android's Settings app. The exploit involves manipulating intent extras to bypass security restrictions, potentially leading to privilege escalation or unauthorized access.

Classification
Working Poc 80%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Android Settings app (versions affected by CVE-2020-0201)
No auth needed
Prerequisites: Access to the target Android device · Ability to send malicious intents to the Settings app
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://source.android.com/security/bulletin/pixel/2020-06-01

Scores

CVSS v3 9.8
EPSS 0.0176
EPSS Percentile 75.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (1)
google/android 10.0
Published Jun 11, 2020
Tracked Since Feb 18, 2026