2 matches found
CVE-2021-1003
In adjustStreamVolume of AudioService.java, there is a possible way for unprivileged app to change audio stream volume due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2021-1003
The CVE-2021-1003 issue affects Android 12 in AudioService.java (adjustStreamVolume). The root cause is a confused deputy that allows an unprivileged app to change the audio stream volume, enabling local privilege escalation without extra execution privileges, and no user interaction is required ...