2 matches found
CVE-2021-0989
In hasManageOngoingCallsPermission of TelecomServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed...
CVE-2021-0989
CVE-2021-0989 describes a local information-disclosure in Android 12 via hasManageOngoingCallsPermission in TelecomServiceImpl.java, allowing an app to determine if another app is installed without query permissions. This is caused by a side-channel disclosure and requires no user interaction. Th...