CVE-2020-0382

LOW

Google Android - Improper Exception Handling

Title source: rule

Description

In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. This could lead to local information disclosure of bug report data with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-152944488

References (1)

[Vendor Advisory] https://source.android.com/security/bulletin/2020-09-01

Scores

CVSS v3 2.3

EPSS 0.0001

EPSS Percentile 2.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-755

Status published

Affected Products (2)

google/android

Timeline

Published Sep 17, 2020

Tracked Since Feb 18, 2026