CVE-2021-0308

January 13, 2021

In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11, Android-8.0; Android ID: A-158063095.

Summary:

In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11, Android-8.0; Android ID: A-158063095.

Reference Links(if available):

  • https://source.android.com/security/bulletin/2021-01-01

  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    image 1

    8 Base Ransomware Victim: PWS – The Laundry Company

    April 16, 2024
    image 1

    8 Base Ransomware Victim: APS – Automotive Parts Solutions

    April 16, 2024
    image 1

    8 Base Ransomware Victim: YRW Limited – Chartered Accountants

    April 16, 2024
    image 1

    8 Base Ransomware Victim: R[.]B[.] Woodcraft, Inc[.]

    April 16, 2024
    image 1

    8 Base Ransomware Victim: LYON TERMINAL

    April 16, 2024