|
195931
|
7.8 |
HIGH
Local
|
google
|
android
|
In onCreate of DevicePickerFragment.java, there is a possible way to trick the user to select an unwanted bluetooth device due to a tapjacking/overlay attack. This could lead to local escalation of p…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2021-0586
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195932
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution pri…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0585
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195933
|
7.8 |
HIGH
Local
|
google
|
android
|
In flv extractor, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interact…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0577
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195934
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Wi-Fi, there is a possible leak of location-sensitive data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User i…
|
CWE-862
Missing Authorization
|
CVE-2021-0518
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195935
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with n…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0515
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195936
|
8.1 |
HIGH
Network
|
google
|
android
|
In several functions of the V8 library, there is a possible use after free due to a race condition. This could lead to remote code execution in an unprivileged process with no additional execution pr…
|
CWE-362
Race Condition
|
CVE-2021-0514
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195937
|
7.8 |
HIGH
Local
|
google
|
android
|
In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. This could lead to local escalation of privilege with User execut…
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-0486
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195938
|
7.3 |
HIGH
Local
|
google
|
android
|
In onCreate of PermissionActivity.java, there is a possible permission bypass due to Confusing UI. This could lead to local escalation of privilege with no additional execution privileges needed. Use…
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-0441
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195939
|
6.7 |
MEDIUM
Local
|
intel
|
core_i7-6700k
xeon_e3-1240_v5
core_i7
core_i5
xeon_e3
core_i9
xeon_d-1649n
xeon_d-1633n
xeon_d-1637
xeon_d-1627
xeon_d-1623n
xeon_d-1622
xeon_d-1653n
xeon_d-160…
|
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2021-0144
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195940
|
7.3 |
HIGH
Local
|
google
|
android
|
In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privilege…
|
CWE-74
Injection
|
CVE-2021-0553
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
