CVE-2021-39784

Name of the Vulnerable Software and Affected Versions Android versions Android-12L

Description In CellBroadcastReceiver, there is a possible path to enable specific cellular features due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Recommendations For Android version Android-12L, consider restricting access to the CellBroadcastReceiver until a patch is available. As a temporary workaround, review and enforce strict permission checks to minimize the risk of exploitation.