2 matches found
CVE-2021-0400
In injectBestLocation and handleUpdateLocation of GnssLocationProvider.java, there is a possible incorrect reporting of location data to emergency services due to improper input validation. This could lead to incorrect reporting of location data to emergency services with User execution privilege...
CVE-2021-0400
CVE-2021-0400 affects Android 9–11 in GnssLocationProvider.java. In injectBestLocation and handleUpdateLocation, there is improper input validation that could cause the device to report location data to emergency services incorrectly. Exploitation is local (attack vector: LOCAL) with no user inte...