Double Free Vulnerability in rw_t3t_process_error of rw_t3t.cc Allows Remote Code Execution over NFC

Double Free Vulnerability in rw_t3t_process_error of rw_t3t.cc Allows Remote Code Execution over NFC

CVE-2021-0473 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In rw_t3t_process_error of rw_t3t.cc, there is a possible double free due to uninitialized data. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-179687208

Learn more about our Cis Benchmark Audit For Google Android.