CVE-2021-0564
- EPSS 0.09%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In decrypt of CryptoPlugin.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVers...
- EPSS 0.09%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In wrapUserThread of AudioStream.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2021-0566
- EPSS 0.12%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In accessAudioHalPidscpp of TimeCheck.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation....
CVE-2021-0567
- EPSS 0.14%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In isRestricted of RemoteViews.java, there is a possible way to inject font files due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploit...
CVE-2021-0568
- EPSS 0.11%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In onReceive of DevicePolicyManagerService.java, there is a possible enabling of disabled profiles due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is...
- EPSS 0.11%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In onStart of ContactsDumpActivity.java, there is possible access to contacts due to a tapjacking/overlay attack. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.Produ...
CVE-2021-0570
- EPSS 0.11%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In sendBugreportNotification of BugreportProgressService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not neede...
CVE-2021-0571
- EPSS 0.11%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:56
In ActivityTaskManagerService.startActivity() and AppTaskImpl.startActivity() of ActivityTaskManagerService.java and AppTaskImpl.java, there is possible access to restricted activities due to a permissions bypass. This could lead to local escalation ...
CVE-2021-0572
- EPSS 0.11%
- Veröffentlicht 22.06.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:57
In doNotification of AccountManagerService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitat...
- EPSS 0.09%
- Veröffentlicht 21.06.2021 17:15:09
- Zuletzt bearbeitet 21.11.2024 05:42:52
In memory management driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andr...