Missing Bounds Checks in SystemSettingsValidators: A Potential Permanent Denial of Service Vulnerability in Android
CVE-2021-0338 · MEDIUM Severity
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
In SystemSettingsValidators, there is a possible permanent denial of service due to missing bounds checks on UI settings. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-156260178
Learn more about our Cis Benchmark Audit For Google Android.