2 matches found
CVE-2021-0932
In showNotification of NavigationModeController.java, there is a possible confused deputy due to an unsafe PendingIntent. This could lead to local escalation of privilege that allows actions performed as the System UI with User execution privileges needed. User interaction is not needed for...
CVE-2021-0932
CVE-2021-0932 affects Android 10 via an unsafe PendingIntent in showNotification (NavigationModeController.java), enabling a possible confused deputy and local elevation of privilege with actions executed as the System UI, without user interaction. Public details consistently reference the same r...