2 matches found
CVE-2021-39643
In icstartRetrieveEntryValue of acropora/app/identity/ic.c, there is a possible bypass of defense-in-depth due to missing validation of the return value. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for...
CVE-2021-39643
CVE-2021-39643 affects the Android kernel component in ic_startRetrieveEntryValue inside acropora/app/identity/ic.c, where a missing validation of a return value can bypass defense-in-depth and enable local privilege escalation to SYSTEM. Exploitation requires local access; no user interaction is...