CVE-2021-39810 (android) | allinfosecnews.com

Oct. 30, 2023, 5:15 p.m. |

National Vulnerability Database web.nvd.nist.gov

In NFC, there is a possible way to setup a default contactless payment app without user consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

android app check consent contactless contactless payment cve default escalation exploitation local missing nfc payment permission privilege privileges

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 6 months ago | web.nvd.nist.gov

attackers cve denial of service issue +1

CVE-2023-40101 (android) 6 months ago | web.nvd.nist.gov

android check collapse cve +7

CVE-2023-21377 (android) 6 months ago | web.nvd.nist.gov

android bypass cve disclosure +8

CVE-2023-21380 (android) 6 months ago | web.nvd.nist.gov

android bluetooth buffer buffer overflow +9

CVE-2023-21382 (android) 6 months ago | web.nvd.nist.gov

access android check cve +11

CVE-2023-21381 (android) 6 months ago | web.nvd.nist.gov

android arbitrary code code code execution +10

CVE-2023-21385 (android) 6 months ago | web.nvd.nist.gov

android corruption cve disclosure +7

CVE-2023-21387 (android) 6 months ago | web.nvd.nist.gov

android backup bypass cve +11

CVE-2023-21389 (android) 6 months ago | web.nvd.nist.gov

android bypass check cve +10

Director, Cyber Risk

@ Kroll | South Africa

View on infosec-jobs.com

Security Engineer, XRM

@ Meta | New York City

View on infosec-jobs.com

Security Analyst 3

@ Oracle | Romania

View on infosec-jobs.com

Internship - Cyber Security Operations

@ SES | Betzdorf, LU

View on infosec-jobs.com

Principal Product Manager (Network/Security Management) - NetSec

@ Palo Alto Networks | Bengaluru, India

View on infosec-jobs.com

IT Security Engineer

@ Timocom GmbH | Erkrath, Germany

View on infosec-jobs.com