2 matches found
CVE-2021-0336
In onReceive of BluetoothPermissionRequest.java, there is a possible permissions bypass due to a mutable PendingIntent. This could lead to local escalation of privilege that bypasses a permission check, with User execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2021-0336
CVE-2021-0336 (Android) affects Android 8.1–11. Root cause: a vulnerability in onReceive of BluetoothPermissionRequest.java allows a permissions bypass via a mutable PendingIntent, enabling local escalation of privilege by bypassing a permission check. Exploitation is described as requiring only ...