CVE-2021-0385
- EPSS 0.11%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:37
In createConnectToAvailableNetworkNotification of ConnectToNetworkNotificationBuilder.java, there is a possible connection to untrusted WiFi networks due to notification interaction above the lockscreen. This could lead to local escalation of privile...
CVE-2021-0386
- EPSS 0.35%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:37
In onCreate of UsbConfirmActivity, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: An...
CVE-2021-0387
- EPSS 0.1%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:37
In FindQuotaDeviceForUuid of QuotaUtils.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2021-0388
- EPSS 0.11%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:37
In onReceive of ImsPhoneCallTracker.java, there is a possible misattribution of data usage due to an incorrect broadcast handler. This could lead to local escalation of privilege resulting in attributing video call data to the wrong app, with no addi...
CVE-2021-0389
- EPSS 0.11%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:37
In setNightModeActivated of UiModeManagerService.java, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andr...
CVE-2021-0449
- EPSS 0.12%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:44
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: ...
CVE-2021-0450
- EPSS 0.12%
- Veröffentlicht 10.03.2021 17:15:13
- Zuletzt bearbeitet 21.11.2024 05:42:44
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: ...
CVE-2021-0393
- EPSS 0.96%
- Veröffentlicht 10.03.2021 16:15:16
- Zuletzt bearbeitet 21.11.2024 05:42:38
In Scanner::LiteralBuffer::NewCapacity of scanner.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if an attacker can supply a malicious PAC file, with no additional execution privileges...
CVE-2021-0394
- EPSS 0.26%
- Veröffentlicht 10.03.2021 16:15:16
- Zuletzt bearbeitet 21.11.2024 05:42:38
In android_os_Parcel_readString8 of android_os_Parcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not n...
CVE-2021-0395
- EPSS 0.13%
- Veröffentlicht 10.03.2021 16:15:16
- Zuletzt bearbeitet 21.11.2024 05:42:38
In StopServicesAndLogViolations of reboot.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...