In sendMessage of OneToOneChatImpl.java (? TBD), there is a possible way to send an RCS message without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-208650395References: N/A
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: google_android

Published: 2022-03-16T14:03:59

Updated: 2024-08-04T02:13:38.360Z

Reserved: 2021-08-23T00:00:00

Link: CVE-2021-39734

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-16T15:15:12.220

Modified: 2024-11-21T06:20:07.080

Link: CVE-2021-39734

cve-icon Redhat

No data.