|
202431
|
6.7 |
MEDIUM
Local
|
intel
|
core_i7-6700k
xeon_e3-1240_v5
core_i7
core_i5
xeon_e3
core_i9
xeon_d-1649n
xeon_d-1633n
xeon_d-1637
xeon_d-1627
xeon_d-1623n
xeon_d-1622
xeon_d-1653n
xeon_d-160…
|
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2021-0144
|
2024-11-21 14:42 |
2021-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202432
|
7.3 |
HIGH
Local
|
google
|
android
|
In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privilege…
|
CWE-74
Injection
|
CVE-2021-0553
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202433
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-0552
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202434
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote denial of service with no …
|
CWE-74
Injection
|
CVE-2021-0551
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202435
|
7.8 |
HIGH
Local
|
google
|
android
|
In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of priv…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2021-0550
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202436
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System exec…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-0549
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202437
|
7.8 |
HIGH
Local
|
google
|
android
|
In rw_i93_send_to_lower of rw_i93.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges n…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0548
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202438
|
7.8 |
HIGH
Local
|
google
|
android
|
In onReceive of NetInitiatedActivity.java, there is a possible way to supply an attacker-controlled value to a GPS HAL handler due to a missing permission check. This could lead to local escalation o…
|
CWE-862
Missing Authorization
|
CVE-2021-0547
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202439
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privil…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0546
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
202440
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC server with Syste…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0545
|
2024-11-21 14:42 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
