CVE-2021-1020

Summary

In snoozeNotification of NotificationListenerService.java, there is a possible way to disable notification for an arbitrary user due to improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-195111725

Affected Software

VendorProductVersion RangeStatus
n/aAndroidAndroid-12affected

Weaknesses

  • Elevation of privilege

ADP Enrichment

CVE Program Container

Additional References

References