2 matches found
CVE-2021-0372
In getMediaOutputSliceAction of RemoteMediaSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2021-0372
CVE-2021-0372 is a local elevation of privilege in Android 11 via getMediaOutputSliceAction in RemoteMediaSlice.java, caused by an unsafe PendingIntent that bypasses permissions without requiring user interaction. The impact is escalation to higher privileges (HIGH per CVSSv3.1) with local access...