CVE-2021-39790

Name of the Vulnerable Software and Affected Versions Android versions Android-12L

Description The issue is related to a missing permission check in the Dialer, allowing manipulation of visual voicemail settings. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is required for exploitation.

Recommendations For Android version Android-12L, consider restricting access to visual voicemail settings until a patch is available. As a temporary workaround, consider disabling the manipulation of visual voicemail settings in the Dialer until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.