3 matches found
CVE-2021-0386
In onCreate of UsbConfirmActivity, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-17342111...
CVE-2021-0386
creationtimestamp| type| source ---|---|--- 2021-03-10 20:53:17+00:00| seen| https://t.me/cibsecurity/24718...
CVE-2021-0386
CVE-2021-0386 affects Android 11 in the UsbConfirmActivity onCreate, enabling a tapjacking vector due to an insecure default value. The vulnerability could allow local escalation of privilege with user interaction required for exploitation (ATT&CK: Local, UI: Required). The issue is documented ac...