CVE-2021-0997
- EPSS 0.11%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:22
In handleUpdateNetworkState of GnssNetworkConnectivityHandler.java , there is a possible APN disclosure due to log information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interactio...
CVE-2021-0998
- EPSS 0.12%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:22
In 'ih264e_find_bskip_params()' of ih264e_me.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for e...
CVE-2021-0999
- EPSS 0.1%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:22
In the broadcast definition in AndroidManifest.xml, there is a possible way to set the A2DP bluetooth device connection state due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges ...
CVE-2021-1001
- EPSS 0.12%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:22
In PVInitVideoEncoder of mp4enc_api.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploita...
CVE-2021-1002
- EPSS 0.76%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:22
In WT_Interpolate of eas_wtengine.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitatio...
CVE-2021-1003
- EPSS 0.12%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:22
In adjustStreamVolume of AudioService.java, there is a possible way for unprivileged app to change audio stream volume due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User int...
CVE-2021-1004
- EPSS 0.1%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:23
In getConfiguredNetworks of WifiServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This could lead to local escalation of privilege with no additional exec...
CVE-2021-1005
- EPSS 0.11%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:23
In getDeviceIdWithFeature of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no ...
CVE-2021-1006
- EPSS 0.11%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:23
In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not need...
CVE-2021-1007
- EPSS 0.11%
- Veröffentlicht 15.12.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:43:23
In btu_hcif_process_event of btu_hcif.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitatio...