CVE-2021-39794
- EPSS 0.33%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In broadcastPortInfo of AdbService.java, there is a possible way for apps to run code as the shell user, if wireless debugging is enabled, due to a missing permission check. This could lead to local escalation of privilege with no additional executio...
CVE-2021-39796
- EPSS 0.16%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In HarmfulAppWarningActivity of HarmfulAppWarningActivity.java, there is a possible way to trick victim to install harmful app due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed....
CVE-2021-39797
- EPSS 0.11%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In several functions of of LauncherApps.java, there is a possible escalation of privilege due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not neede...
CVE-2021-39798
- EPSS 0.11%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In Bitmap_createFromParcel of Bitmap.cpp, there is a possible arbitrary code execution due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitat...
CVE-2021-39799
- EPSS 0.12%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In AttributionSource of AttributionSource.java, there is a possible permission bypass due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...
CVE-2021-39800
- EPSS 0.14%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In ion_ioctl of ion-ioctl.c, there is a possible way to leak kernel head data due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Pro...
CVE-2021-39801
- EPSS 0.11%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In ion_ioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Android...
CVE-2021-39802
- EPSS 0.15%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:15
In change_pte_range of mprotect.c , there is a possible way to make a shared mmap writable due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...
CVE-2021-39803
- EPSS 0.61%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:16
In ~Impl of C2AllocatorIon.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andr...
CVE-2021-39804
- EPSS 0.4%
- Veröffentlicht 12.04.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:16
In reinit of HeifDecoderImpl.cpp, there is a possible crash due to a missing null check. This could lead to remote persistent denial of service in the file picker with no additional execution privileges needed. User interaction is needed for exploita...