exploitDog

GHSA-c8p6-443q-9mqj

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An improper caller check vulnerability in Managed Provisioning prior to SMR APR-2021 Release 1 allows unprivileged application to install arbitrary application, grant device admin permission and then delete several installed application.

An improper caller check vulnerability in Managed Provisioning prior to SMR APR-2021 Release 1 allows unprivileged application to install arbitrary application, grant device admin permission and then delete several installed application.

Ссылки

EPSS

Процентиль: 9%

0.00032

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-25356

CVSS3: 7.1

nvd

почти 5 лет назад

An improper caller check vulnerability in Managed Provisioning prior to SMR APR-2021 Release 1 allows unprivileged application to install arbitrary application, grant device admin permission and then delete several installed application.

EPSS

Процентиль: 9%

0.00032

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863