|
195991
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with n…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0515
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195992
|
8.1 |
HIGH
Network
|
google
|
android
|
In several functions of the V8 library, there is a possible use after free due to a race condition. This could lead to remote code execution in an unprivileged process with no additional execution pr…
|
CWE-362
Race Condition
|
CVE-2021-0514
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195993
|
7.8 |
HIGH
Local
|
google
|
android
|
In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. This could lead to local escalation of privilege with User execut…
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-0486
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195994
|
7.3 |
HIGH
Local
|
google
|
android
|
In onCreate of PermissionActivity.java, there is a possible permission bypass due to Confusing UI. This could lead to local escalation of privilege with no additional execution privileges needed. Use…
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-0441
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195995
|
6.7 |
MEDIUM
Local
|
intel
|
core_i7-6700k
xeon_e3-1240_v5
core_i7
core_i5
xeon_e3
core_i9
xeon_d-1649n
xeon_d-1633n
xeon_d-1637
xeon_d-1627
xeon_d-1623n
xeon_d-1622
xeon_d-1653n
xeon_d-160…
|
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2021-0144
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195996
|
7.3 |
HIGH
Local
|
google
|
android
|
In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privilege…
|
CWE-74
Injection
|
CVE-2021-0553
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195997
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-0552
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195998
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote denial of service with no …
|
CWE-74
Injection
|
CVE-2021-0551
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195999
|
7.8 |
HIGH
Local
|
google
|
android
|
In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of priv…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2021-0550
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196000
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System exec…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-0549
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
