CVE-2021-39618 in Androidinformación

Resumen

por MITRE • 2022-01-14

In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing packages without user consent due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-196855999

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

2021-08-23

Divulgación

2022-01-14

Moderación

aceptado

Artículo

VDB-190558

CPE

listo

EPSS

0.00122

KEV

no

Actividades

muy bajo

Fuentes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!