Using unsafe PendingIntent in Customization Service prior to version 2.2.02.1 in Android O(8.x), 2.4.03.0 in Android P(9.0), 2.7.02.1 in Android Q(10.0) and 2.9.01.1 in Android R(11.0) allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.
References
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: Samsung Mobile

Published: 2021-04-09T17:37:27

Updated: 2021-04-09T17:37:27

Reserved: 2021-01-19T00:00:00


Link: CVE-2021-25373

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2021-04-09T18:15:15.023

Modified: 2022-08-12T18:02:07.783


Link: CVE-2021-25373

JSON object: View

cve-icon Redhat Information

No data.