|
196291
|
7.5 |
HIGH
Network
|
google
|
android
|
In isWordBreakAfter of LayoutUtils.cpp, there is a possible way to slow or crash a TextView due to improper input validation. This could lead to remote denial of service with no additional execution …
|
CWE-20
Improper Input Validation
|
CVE-2021-0313
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196292
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges ne…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2021-0312
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196293
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In ElementaryStreamQueue::dequeueAccessUnitH264() of ESQueue.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no addit…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0311
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196294
|
7.8 |
HIGH
Local
|
google
|
android
|
In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privi…
|
CWE-416
Use After Free
|
CVE-2021-0310
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196295
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In onCreate of grantCredentialsPermissionActivity, there is a confused deputy. This could lead to local information disclosure and account access with no additional execution privileges needed. User …
|
NVD-CWE-Other
|
CVE-2021-0309
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196296
|
6.8 |
MEDIUM
Physics
|
google
debian
|
android
debian_linux
|
In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges nee…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0308
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196297
|
7.8 |
HIGH
Local
|
google
|
android
|
In updatePermissionSourcePackage of PermissionManagerService.java, there is a possible automatic runtime permission grant due to a confused deputy. This could lead to local escalation of privilege al…
|
NVD-CWE-Other
|
CVE-2021-0307
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196298
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In several functions of GlobalScreenshot.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of the user's contacts with User e…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-0304
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196299
|
7.8 |
HIGH
Local
|
google
|
android
|
In addAllPermissions of PermissionManagerService.java, there is a possible permissions bypass when upgrading major Android versions which allows an app to gain the android.permission.ACTIVITY_RECOGNI…
|
CWE-269
Improper Privilege Management
|
CVE-2021-0306
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196300
|
7.0 |
HIGH
Local
|
google
|
android
|
In dispatchGraphTerminationMessage() of packages/services/Car/computepipe/runner/graph/StreamSetObserver.cpp, there is a possible use after free due to a race condition. This could lead to local esca…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2021-0303
|
2024-11-21 14:42 |
2021-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
