Security Advisory

CVE-2021-1034

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-15 18:06:28

Last updated 2024-08-03 15:55:18

Assigner google_android

State PUBLISHED

Description

In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is apossible way to determine whether an app is installed, without querypermissions due to a missing permission check. This could lead to localinformation disclosure with no additional execution privileges needed. Userinteraction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-193441322

← Browse all CVEs View on cve.org ↗