CVE-2021-0644
- EPSS 0.11%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:04
In conditionallyRemoveIdentifiers of SubscriptionController.java, there is a possible way to retrieve a trackable identifier due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. Use...
CVE-2021-0680
- EPSS 0.1%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In system properties, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...
CVE-2021-0681
- EPSS 0.1%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In system properties, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...
CVE-2021-0682
- EPSS 0.11%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of notification data due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interacti...
CVE-2021-0683
- EPSS 0.22%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In runTraceIpcStop of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not ne...
CVE-2021-0684
- EPSS 0.12%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In TouchInputMapper::sync of TouchInputMapper.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for ex...
CVE-2021-0685
- EPSS 0.19%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In ParsedIntentInfo of ParsedIntentInfo.java, there is a possible parcel serialization/deserialization mismatch due to unsafe deserialization. This could lead to local escalation of privilege with no additional execution privileges needed. User inter...
CVE-2021-0686
- EPSS 0.1%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In getDefaultSmsPackage of RoleManagerService.java, there is a possible way to get information about the default sms app of a different device user due to a missing permission check. This could lead to local information disclosure with no additional ...
- EPSS 0.11%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:08
In ellipsize of Layout.java, there is a possible ANR due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: An...
- EPSS 0.16%
- Veröffentlicht 06.10.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:43:09
In lockNow of PhoneWindowManager.java, there is a possible lock screen bypass due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: An...