CVE-2022-20120

CRITICAL

Android - Remote Code Execution

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-20120. PoCs published by boredpentester.

AI-analyzed exploit summary This PoC demonstrates a ROP chain exploit targeting CVE-2022-20120 to update the device's serial number via memmove() in the ABL (Android Bootloader). It leverages a stack-based overflow to manipulate execution flow and achieve arbitrary memory writes.

Description

Product: AndroidVersions: Android kernelAndroid ID: A-203213034References: N/A

Exploits (1)

nomisec WORKING POC 7 stars

by boredpentester · poc

https://github.com/boredpentester/ABL_ROP

View Code ZIP pw:eip

This PoC demonstrates a ROP chain exploit targeting CVE-2022-20120 to update the device's serial number via memmove() in the ABL (Android Bootloader). It leverages a stack-based overflow to manipulate execution flow and achieve arbitrary memory writes.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: Android Bootloader (ABL) on Pixel 6 devices

No auth needed

Prerequisites: Physical or fastboot access to the target device · Unlocked bootloader

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://source.android.com/security/bulletin/pixel/2022-05-01

Scores

CVSS v3 9.8

EPSS 0.0124

EPSS Percentile 65.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (1)

google/android

Published May 10, 2022

Tracked Since Feb 18, 2026