In vpu, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05371580.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-acknowledgements | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
23 Feb 2021, 22:38
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:* |
23 Feb 2021, 05:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | In vpu, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05371580. |
05 Feb 2021, 01:38
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:* | |
| References | (MISC) https://corp.mediatek.com/product-security-acknowledgements - Third Party Advisory | |
| CWE | CWE-787 | |
| CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 6.7 |
04 Feb 2021, 19:18
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-02-04 19:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-0346
Mitre link : CVE-2021-0346
CVE.ORG link : CVE-2021-0346
JSON object : View
Products Affected
- android
CWE
CWE-787
Out-of-bounds Write