Lucene search
Google_androidCVELIST:CVE-2021-0970HistoryDec 15, 2021 - 6:05 p.m.
CVE-2021-0970
2021-12-1518:05:46
google_android
www.cve.org
4
android
parcel serialization
gpsnavigationmessage
local privilege escalation
EPSS
0
Percentile
5.1%
In createFromParcel of GpsNavigationMessage.java, there is a possible Parcel serialization/deserialization mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-196970023
CNA Affected
[
{
"product": "Android",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Android-10 Android-11 Android-12 Android-9"
}
]
}
]Related
nvd
nvd
CVE-2021-0970
2021-12-15 19:15:12
prion
prion
Deserialization of untrusted data
2021-12-15 19:15:00
cve
cve
CVE-2021-0970
2021-12-15 19:15:12
osv
osv
ics
ics
Siemens SIMATIC
2024-03-14 12:00:00