3 matches found
CVE-2021-0328
In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
CVE-2021-0328
creationtimestamp| type| source ---|---|--- 2021-02-10 20:41:55+00:00| seen| https://t.me/cibsecurity/23380...
CVE-2021-0328
CVE-2021-0328 describes a Bluetooth vulnerability in Android’s GattService.java where onBatchScanReports and deliverBatchScan fail to perform a required permissions check. This permits retrieval of Bluetooth scan results without the necessary permissions, enabling local escalation of privilege wi...