CVE-2021-0480

Name of the Vulnerable Software and Affected Versions: Android versions 8.1 through 11

Description: The issue concerns a possible broadcast intent containing a sensitive identifier in the createPendingIntent method of SnoozeHelper.java. This could lead to local information disclosure with no additional execution privileges needed. User interaction is necessary for exploitation.

Recommendations: For Android versions 8.1 through 11, consider restricting access to sensitive identifiers until a patch is available. As a temporary workaround, review and limit the use of the createPendingIntent method in SnoozeHelper.java to minimize the risk of exploitation.