CVE-2021-1048 – Google / Android – Use after free

November 5, 2021

CVE-2021-1048 is a use after free vulnerability impacting Google Android. A proof of concept (PoC) was not observed publicly or in the underground. Google claimed to be aware of the vulnerability being actively exploited in the wild.

Summary:

CVE-2021-1048 is a use after free vulnerability impacting Google Android. A proof of concept (PoC) was not observed publicly or in the underground. Google claimed to be aware of the vulnerability being actively exploited in the wild.

PoC Links(if available):

Google Android exploitation information –
https://source.android.com/security/bulletin/2021-11-01

Known Counter Measures:

Google addressed the vulnerability in an Android security bulletin with updated versions.

Links to patches(if available)

https://source.android.com/security/bulletin/2021-11-01

You may have missed

CISA Logo

CISA: CISA Releases Eight Industrial Control Systems Advisories

April 25, 2024
alerts

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

April 25, 2024
image

CACTUS Ransomware Victim: https://www[.]ghimli[.]com /

April 25, 2024
hkcert

Cisco Products Multiple Vulnerabilities

April 25, 2024
HIBP Banner 1

T2 – 94,584 breached accounts

April 25, 2024