CVE-2020-26598

HIGH

LG Android 8.0-9.0 - Unauthenticated TCP Connection Termination via Network Management Component

Title source: llm
STIX 2.1

Description

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, and 9.0 software. The Network Management component could allow an unauthorized actor to kill a TCP connection. The LG ID is LVE-SMP-200023 (October 2020).

References (1)

Core 1
Core References
Vendor Advisory x_refsource_misc
https://lgsecurity.lge.com/

Scores

CVSS v3 7.5
EPSS 0.0033
EPSS Percentile 25.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-862
Status published
Products (3)
google/android 8.0
google/android 8.1
google/android 9.0
Published Oct 06, 2020
Tracked Since Feb 18, 2026