exploitDog

CVE-2021-0355

Опубликовано: 03 фев. 2021

Источник: nvd

CVSS3: 6.7

CVSS2: 4.6

EPSS Низкий

Описание

In kisd, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05425581.

Ссылки

https://corp.mediatek.com/product-security-acknowledgements
Third Party Advisory
https://corp.mediatek.com/product-security-acknowledgements
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*

EPSS

Процентиль: 4%

0.0002

Низкий

6.7 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-190

Связанные уязвимости

GHSA-6pmc-4qj8-52q7

github

больше 3 лет назад

In kisd, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05425581.

EPSS

Процентиль: 4%

0.0002

Низкий

6.7 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-190