CVE-2021-0487 – In onCreate of CalendarDebugActivity.java, there is a possible way to export calendar data …

11 June 2021

Vuln ID: CVE-2021-0487

Published: 2021-06-11 17:15:09Z

Description: In onCreate of CalendarDebugActivity.java, there is a possible way to export calendar data to the sdcard without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-174046397

Source: NVD.NIST.GOV

Date:

11 June 2021

Categorie(s):

NVD

Tag(s):

NVD

5G Hackathons – Casey Ellis – BTS #2824 April 2024
CoralRaider leverages CDN cache domains in new infostealer campaign24 April 2024
Shouldn’t Teams, Zoom, Slack all interoperate securely for the Feds? Wyden is asking24 April 2024
The evolution from BEC to BCC24 April 2024
US indicts botnet operator24 April 2024