CVE-2021-39780

2022-03-3016:02:46

google_android

www.cve.org

traceur

android-12l

system traces

AI Score

8.2

Confidence

High

EPSS

0.001

Percentile

17.2%

JSON

In Traceur, there is a possible bypass of developer settings requirements for capturing system traces due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-204992293

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-12L"
      }
    ]
  }
]

References

source.android.com/security/bulletin/android-12l