2 matches found
CVE-2021-39627
In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2021-39627
CVE-2021-39627 describes a permissions bypass in Android via an unsafe PendingIntent in LegacyModeSmsHandler.java (sendLegacyVoicemailNotification). Affected: Android 9–12 (Android-9, -10, -11, -12). Root cause: unsafe PendingIntent may allow elevation of privileges within a privileged process. I...