CVE-2021-1022

Name of the Vulnerable Software and Affected Versions Android versions prior to Android-12

Description The issue is related to a missing null check in the btif in hf client generic evt function of btif hf client.cc, which could cause a Bluetooth service crash. This could lead to a remote denial of service, and no additional execution privileges are needed for exploitation. User interaction is not required for exploitation.

Recommendations For Android versions prior to Android-12, update to Android-12 or a later version to resolve the issue. As a temporary workaround, consider restricting Bluetooth service usage to minimize the risk of exploitation.