CVE-2021-1008

Name of the Vulnerable Software and Affected Versions Android versions Android-12

Description A logic error in the code of SubscriptionController.java, specifically in the addSubInfo function, can be exploited to force a factory reset, leading to a local denial of service. This issue requires System execution privileges and does not need user interaction for exploitation.

Recommendations For Android version Android-12, consider restricting access to the addSubInfo function in SubscriptionController.java until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.