Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistGoogle_androidCVELIST:CVE-2021-0435
HistoryApr 13, 2021 - 6:22 p.m.

CVE-2021-0435

2021-04-1318:22:06
google_android
www.cve.org
3
heap data leak
avrc_proc_vendor_command
avrc_api.cc
android
remote information disclosure

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

37.8%

JSON

In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-174150451

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-11 Android-8.1 Android-9 Android-10"
      }
    ]
  }
]

Related

prion 1
githubexploit 2
nvd 1
cve 1
osv 1
ics 1
prion
prion
Heap overflow
2021-04-13 19:15:00
githubexploit
githubexploit
Exploit for Improper Initialization in Google Android
2022-04-21 06:37:09
Exploit for Improper Initialization in Google Android
2022-04-21 06:54:34
nvd
nvd
CVE-2021-0435
2021-04-13 19:15:13
cve
cve
CVE-2021-0435
2021-04-13 19:15:13
osv
osv
[Bluetooth information disclosure vulnerability in avrc_proc_vendor_command]
2021-04-01 00:00:00
ics
ics
Siemens SIMATIC
2024-03-14 12:00:00

AI Score

7.3

Confidence

High

EPSS

0.001

Percentile

37.8%

JSON
Related for CVELIST:CVE-2021-0435
prion1githubexploit2nvd1cve1osv1ics1