CVE-2021-1008
published 2021-12-15CVE-2021-1008: In addSubInfo of SubscriptionController.java, there is a possible way to force the user to make a factory reset due to a logic error in the code. This could…
medium4.4CVSS 3.1
AVLACLPRHUINSUCNINAH
In addSubInfo of SubscriptionController.java, there is a possible way to force the user to make a factory reset due to a logic error in the code. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-197327688
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| platform | frameworks_opt_telephony | >= 12:0 < 12:2021-12-01 | 12:2021-12-01 |