CVE-2021-0305

In PackageInstaller, there is a possible tapjacking attack due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10Android ID: A-154015447
References
Link Resource
https://source.android.com/security/bulletin/2021-02-01 Patch Vendor Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*

Information

Published : 2021-02-10 09:15

Updated : 2021-02-12 09:56


NVD link : CVE-2021-0305

Mitre link : CVE-2021-0305


JSON object : View

CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames

Advertisement

dedicated server usa

Products Affected

google

  • android