Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistGoogle_androidCVELIST:CVE-2021-0333
HistoryFeb 10, 2021 - 4:49 p.m.

CVE-2021-0333

2021-02-1016:49:28
google_android
www.cve.org
8
android
bluetooth
permissions
bypass
tapjacking
overlay
phonebook
dialog
local escalation

EPSS

0

Percentile

5.1%

JSON

In onCreate of BluetoothPermissionActivity.java, there is a possible permissions bypass due to a tapjacking overlay that obscures the phonebook permissions dialog when a Bluetooth device is connecting. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-168504491

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-8.1 Android-9 Android-10 Android-11"
      }
    ]
  }
]

Related

prion 1
osv 1
nvd 1
cve 1
ics 1
prion
prion
Buffer overflow
2021-02-10 17:15:00
osv
osv
phonebook leaking risk caused by overlaying window on top of BluetoothPermissionActivity
2021-02-01 00:00:00
nvd
nvd
CVE-2021-0333
2021-02-10 17:15:20
cve
cve
CVE-2021-0333
2021-02-10 17:15:20
ics
ics
Siemens SIMATIC
2024-03-14 12:00:00

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2021-0333
prion1osv1nvd1cve1ics1