CVE-2021-0973

Name of the Vulnerable Software and Affected Versions Android versions Android-12

Description The issue is related to improper handling of case sensitivity in the isFileUri function of UriUtil.java. This could lead to local information disclosure with no additional execution privileges needed. User interaction is required for exploitation.

Recommendations For Android version Android-12, consider restricting access to file://URI attachments to minimize the risk of exploitation until a proper fix is applied. As a temporary workaround, ensure that all file://URI attachments are properly validated and handled with case sensitivity in mind.