EPSS
Percentile
18.0%
In rndis_set_response of rndis.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
android.googlesource.com/kernel/common/+/38ea1eac7d88072bbffb630e2b3db83ca649b826
source.android.com/security/bulletin/2022-06-01