Vulnerability tracked as CVE-2020-0022 is a remote code execution flaw that could allow attackers to execute code on the device with the elevated privileges of the Bluetooth module when the wireless module is active. The flaw was reported to Google by Jan Ruge from the Technische Universitt Darmstadt, Secure Mobile Networking Lab. The risk of exploitation of such kind of vulnerabilities is that they could be used to implement a wormable behavior in mobile malware that could rapidly spread.”]
Source: https://securityaffairs.co/wordpress/97421/cyber-crime/cve-2020-0022-android-bluetooth-flaw.html