CVE-2021-39767
In miniadb, there is a possible way to get read/write access to recovery system properties due to an insecure default value. This could lead to…
In miniadb, there is a possible way to get read/write access to recovery system properties due to an insecure default value. This could lead to…
In Settings, there is a possible way to add an auto-connect WiFi network without the user’s consent due to a missing permission check. This could…
In Device Policy, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This…
In Framework, there is a possible disclosure of the device owner package due to a missing permission check. This could lead to local information disclosure…
In Settings, there is a possible way to misrepresent which app wants to add a wifi network due to improper input validation. This could lead…
In Bluetooth, there is a possible way to access the a2dp audio control switch due to a missing permission check. This could lead to local…
In VpnManagerService, there is a possible disclosure of installed VPN packages due to side channel information disclosure. This could lead to local information disclosure with…
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with…
In People, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…
In NFC, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with User execution…