PT-2021-11310 · Google · Android
Published
2021-01-22
·
Updated
2021-07-21
·
CVE-2020-27097
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Android versions Android-11
Description:
A permissions bypass issue exists in the UriGrantsManagerService.java file, specifically in the checkGrantUriPermission method. This could lead to local information disclosure without requiring additional execution privileges. User interaction is not necessary for exploitation.
Recommendations:
For Android version Android-11, update to a version that includes the fix for the issue in UriGrantsManagerService.java, specifically addressing the checkGrantUriPermission method.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Android