Vulnerabilities > CVE-2021-25474 - Improper Handling of Exceptional Conditions vulnerability in Google Android 10.0/11.0

047910
CVSS 4.9 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
local
low complexity
google
CWE-755

Summary

Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_show_on_qspanel value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset.

Vulnerable Configurations

Part Description Count
OS
Google
2