Improper Input Validation in Messaging App Allows Bypass of Attachment Restrictions

Improper Input Validation in Messaging App Allows Bypass of Attachment Restrictions

CVE-2021-39740 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In Messaging, there is a possible way to bypass attachment restrictions due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-209965112

Learn more about our Cis Benchmark Audit For Google Android.