CVE-2021-0444

Description from NVD

In onActivityResult of QuickContactActivity.java, there is an unnecessary return of an intent. This could lead to local information disclosure of contact data with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-178825358

Information Acquisition Date:2021-09-10T14:53Z
CVSS 2.0: 1.9 LOW CVSS 3.x: 5.5 MEDIUM

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

▼ CVSS2 Vec AV:L/AC:M/Au:N/C:P/I:N/A:N

NVD References

 https://source.android.com/security/bulletin/2021-04-01
     source:MISC
     tags:Patch    Vendor Advisory    

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Windows(2 tweets)



List of frequently cited URLs

URLNum of Times Referred to
https://us-cert.cisa.gov/ncas/current-activity/2021/09/07/m...24
https://twitter.com/jq0904/status/14361557002127442116
https://github.com/SigmaHQ/sigma/blob/master/rules/windows/...3
https://blog.nviso.eu/2021/09/09/kusto-hunting-query-for-cv...3

▼ Show Information from Twitter(25)


List of frequently cited URLs

URLNum of Times Referred to
us-cert.cisa.gov24
twitter.com6
github.com3
blog.nviso.eu3

▼ Show Information from Twitter(25)


GitHub Search Results: Up to 10
NameURL
No Data

GitHub Search Results: Up to 10
NameURL
No Data

2021/09/10 Score : 10
Added Har-sia Database : 2021/04/14
Last Modified : 2021/09/10
Highest Scored Date : 2021/09/10
Highest Score : 10