|
197491
|
7.5 |
HIGH
Network
|
google
|
android
|
The method PVRSRVBridgeTLDiscoverStreams allocates puiStreamsInt on the heap, fills the contents of the buffer via TLServerDiscoverStreamsKM, and then copies the buffer to userspace. The method TLSer…
|
CWE-909
Missing Initialization of Resource
|
CVE-2021-0947
|
2024-11-21 14:43 |
2022-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197492
|
7.5 |
HIGH
Network
|
google
|
android
|
The method PVRSRVBridgePMRPDumpSymbolicAddr allocates puiMemspaceNameInt on the heap, fills the contents of the buffer via PMR_PDumpSymbolicAddr, and then copies the buffer to userspace. The method P…
|
CWE-909
Missing Initialization of Resource
|
CVE-2021-0946
|
2024-11-21 14:43 |
2022-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197493
|
7.5 |
HIGH
Network
|
google
|
android
|
An unprivileged app can trigger PowerVR driver to return an uninitialized heap memory causing information disclosure.Product: AndroidVersions: Android SoCAndroid ID: A-236849490
|
CWE-269
Improper Privilege Management
|
CVE-2021-0891
|
2024-11-21 14:43 |
2022-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197494
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In PVRSRVBridgeHeapCfgHeapConfigName, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privilege…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-0887
|
2024-11-21 14:43 |
2022-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197495
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In PVRSRVBridgeHeapCfgHeapDetails, there is a possible leak of kernel heap content due to uninitialized data. This could lead to local information disclosure with no additional execution privileges n…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2021-0698
|
2024-11-21 14:43 |
2022-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197496
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In USB Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosur…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2021-0975
|
2024-11-21 14:43 |
2022-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197497
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check. This could lead to local inform…
|
CWE-862
Missing Authorization
|
CVE-2021-0735
|
2024-11-21 14:43 |
2022-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197498
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could lead to local information disclosure of…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-0734
|
2024-11-21 14:43 |
2022-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197499
|
7.8 |
HIGH
Local
|
google
|
android
|
In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User i…
|
CWE-416
Use After Free
|
CVE-2021-0707
|
2024-11-21 14:43 |
2022-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197500
|
7.8 |
HIGH
Local
|
google
|
android
|
In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. This coul…
|
CWE-863
Incorrect Authorization
|
CVE-2021-0694
|
2024-11-21 14:43 |
2022-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
