|
195941
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-0552
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195942
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote denial of service with no …
|
CWE-74
Injection
|
CVE-2021-0551
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195943
|
7.8 |
HIGH
Local
|
google
|
android
|
In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of priv…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2021-0550
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195944
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System exec…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-0549
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195945
|
7.8 |
HIGH
Local
|
google
|
android
|
In rw_i93_send_to_lower of rw_i93.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges n…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0548
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195946
|
7.8 |
HIGH
Local
|
google
|
android
|
In onReceive of NetInitiatedActivity.java, there is a possible way to supply an attacker-controlled value to a GPS HAL handler due to a missing permission check. This could lead to local escalation o…
|
CWE-862
Missing Authorization
|
CVE-2021-0547
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195947
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privil…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0546
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195948
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC server with Syste…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0545
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195949
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privil…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0544
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195950
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privil…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2021-0543
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
