Vulnerabilities > Information Exposure Through Discrepancy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-20 | CVE-2021-44554 | Information Exposure Through Discrepancy vulnerability in Cybelesoft Thinfinity Virtualui Thinfinity VirtualUI before 3.0 allows a malicious actor to enumerate users registered in the OS (Windows) through the /changePassword URI. | 5.3 |
| 2021-12-15 | CVE-2021-0987 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getNeighboringCellInfo of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-0988 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getLaunchedFromUid and getLaunchedFromPackage of ActivityClientController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-0989 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In hasManageOngoingCallsPermission of TelecomServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-0990 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-0995 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In registerSuggestionConnectionStatusListener of WifiServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-1005 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getDeviceIdWithFeature of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1009 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In setApplicationCategoryHint of PackageManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1012 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In onResume of NotificationAccessDetails.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1013 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In checkExistsAndEnforceCannotModifyImmutablyRestrictedPermission of PermissionManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |