CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39791
https://notcve.org/view.php?id=CVE-2021-39791
30 Mar 2022 — In WallpaperManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-203: Observable Discrepancy •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39788
https://notcve.org/view.php?id=CVE-2021-39788
30 Mar 2022 — In TelecomManager, there is a possible way to check if a particular self managed phone account was registered on the device due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-203: Observable Discrepancy •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39781
https://notcve.org/view.php?id=CVE-2021-39781
30 Mar 2022 — In SmsController, there is a possible information disclosure due to a permissions bypass. • https://source.android.com/security/bulletin/android-12l •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39779
https://notcve.org/view.php?id=CVE-2021-39779
30 Mar 2022 — This could lead to local information disclosure of the call state with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-276: Incorrect Default Permissions •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39778
https://notcve.org/view.php?id=CVE-2021-39778
30 Mar 2022 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39777
https://notcve.org/view.php?id=CVE-2021-39777
30 Mar 2022 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39775
https://notcve.org/view.php?id=CVE-2021-39775
30 Mar 2022 — In People, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-203: Observable Discrepancy •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39773
https://notcve.org/view.php?id=CVE-2021-39773
30 Mar 2022 — In VpnManagerService, there is a possible disclosure of installed VPN packages due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-203: Observable Discrepancy •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39770
https://notcve.org/view.php?id=CVE-2021-39770
30 Mar 2022 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-276: Incorrect Default Permissions •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39769
https://notcve.org/view.php?id=CVE-2021-39769
30 Mar 2022 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/android-12l • CWE-276: Incorrect Default Permissions •