3 matches found
CVE-2021-0990
In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...
CVE-2021-0990
In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...
CVE-2021-0990
CVE-2021-0990 concerns an information-disclosure flaw in Android 12 via getDeviceId in PhoneSubInfoController.java. The issue allows determining whether an app is installed without query permissions, via a side-channel, leading to local information disclosure without extra execution privileges; u...