Security Advisory

CVE-2021-0321

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-11 21:47:19

Last updated 2024-08-03 15:32:10

Assigner google_android

State PUBLISHED

Description

In enforceDumpPermissionForPackage of ActivityManagerService.java, there is a possible way to determine if a package is installed due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Android ID: A-166667403.

← Browse all CVEs View on cve.org ↗