Lucene search
Google_androidCVELIST:CVE-2021-0319HistoryJan 11, 2021 - 9:47 p.m.
CVE-2021-0319
2021-01-1121:47:25
google_android
www.cve.org
5
bluetooth mac address
companiondevicemanagerservice
android 8.0
android 8.1
android 9
android 10
android 11
local privilege escalation
user interaction
EPSS
0
Percentile
5.1%
In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device’s MAC address without appropriate permissions due to a permissions bypass. This could lead to local escalation of privilege that grants access to nearby MAC addresses, with User execution privileges needed. User interaction is needed for exploitation. Product: Android; Versions: Android-8.0, Android-8.1, Android-9, Android-10, Android-11; Android ID: A-167244818.
CNA Affected
[
{
"product": "Android",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Android-8.0"
},
{
"status": "affected",
"version": "Android-8.1"
},
{
"status": "affected",
"version": "Android-9"
},
{
"status": "affected",
"version": "Android-10"
},
{
"status": "affected",
"version": "Android-11"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2021-01-11 22:15:00
osv
osv
cve
cve
CVE-2021-0319
2021-01-11 22:15:13
nvd
nvd
CVE-2021-0319
2021-01-11 22:15:13
threatpost
threatpost
Google Warns of Critical Android Remote Code Execution Bug
2021-01-05 20:21:40