CVE-2021-0992 in Androidinfo

Zusammenfassung

von MITRE • 15.12.2021

In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app without user consent due to tapjack overlay. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-180104327

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

06.11.2020

Veröffentlichung

15.12.2021

Moderieren

akzeptiert

Eintrag

VDB-188460

CPE

bereit

EPSS

0.00113

KEV

nein

Aktivitäten

very low

Quellen

Do you need the next level of professionalism?

Upgrade your account now!