EUVD-2021-3609

Malicious code in bioql PyPI...

CVE-2021-0990

In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...

Information disclosure

In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...

CVE-2021-0990

CVE-2021-0990 concerns an information-disclosure flaw in Android 12 via getDeviceId in PhoneSubInfoController.java. The issue allows determining whether an app is installed without query permissions, via a side-channel, leading to local information disclosure without extra execution privileges; u...

CVE-2021-0990

In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...

The vulnerability of the Android operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the getDeviceIdForPhone function in the Android operating system’s internal/telephony/PhoneSubInfoController.java file is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain confidentia...