CVE-2021-39668
- EPSS 0.13%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:57
In onActivityViewReady of DetailDialog.kt, there is a possible Intent Redirect due to a confused deputy. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. ...
CVE-2021-39669
- EPSS 0.1%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:57
In onCreate of InstallCaCertificateWarning.java, there is a possible way to mislead an user about CA installation circumstances due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileg...
CVE-2021-39671
- EPSS 0.49%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:57
In code generated by aidl_const_expressions.cpp, there is a possible out of bounds read due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati...
CVE-2021-39672
- EPSS 0.13%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:57
In fastboot, there is a possible secure boot bypass due to a configuration error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versi...
CVE-2021-39674
- EPSS 0.15%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:58
In btm_sec_connected and btm_sec_disconnected of btm_sec.cc file , there is a possible use after free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: An...
- EPSS 5.93%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:58
In GKI_getbuf of gki_buffer.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.P...
CVE-2021-39676
- EPSS 0.12%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:58
In writeThrowable of AndroidFuture.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interac...
CVE-2021-39677
- EPSS 0.39%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:19:58
In startVideoStream() there is a possibility of an OOB Read in the heap, when the camera buffer is ‘zero’ in size.Product: AndroidVersions: Android-11Android ID: A-205097028
CVE-2021-39687
- EPSS 0.12%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:20:00
In HandleTransactionIoEvent of actuator_driver.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo...
CVE-2021-39688
- EPSS 0.11%
- Veröffentlicht 11.02.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 06:20:00
In TBD of TBD, there is a possible out of bounds read due to TBD. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernel...