Missing Bounds Checks in SystemSettingsValidators: A Potential Permanent Denial of Service Vulnerability in Android

Missing Bounds Checks in SystemSettingsValidators: A Potential Permanent Denial of Service Vulnerability in Android

CVE-2021-0338 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In SystemSettingsValidators, there is a possible permanent denial of service due to missing bounds checks on UI settings. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-156260178

Learn more about our Cis Benchmark Audit For Google Android.