In DevicePolicyManager, there is a possible way to reveal the existence of an installed package without proper query permissions due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-204995407
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/security/bulletin/android-12l |
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2022-03-30T16:02:19
Updated: 2024-08-04T02:13:38.306Z
Reserved: 2021-08-23T00:00:00
Link: CVE-2021-39755
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-03-30T16:15:09.657
Modified: 2022-04-05T14:11:53.673
Link: CVE-2021-39755
Redhat
No data.