2 matches found
CVE-2021-39706
In onResume of CredentialStorage.java, there is a possible way to cleanup content of credentials storage due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...
CVE-2021-39706
CVE-2021-39706 affects Android (versions 10–12). In CredentialStorage.java, onResume allows cleanup of credentials storage due to a missing permission check, enabling local elevation of privilege. Exploitation requires user interaction. The issue is categorized as EoP withHigh impact (local acces...