ASB-A-178725766

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-178725766.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-178725766
Aliases
Published
2021-04-01T00:00:00Z
Modified
2026-04-21T15:25:42.831358Z
Summary
[none]
Details

In rwmfchandlereadop of rw_mfc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution via a malicious NFC packet with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/system/nfc

Package

Name
platform/system/nfc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
10:0
Fixed
10:2021-04-01

Affected versions

Other
10

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "96286498381106398995438837450991210433",
                    "231417792723668579429895987669067954210",
                    "28365524993106854423848162659127831792",
                    "275234176995760180664424792344073227614",
                    "11447692766712693790054707364558551516",
                    "306605473653864100108542188896959042454",
                    "116294950756372123268645695692917584504",
                    "1728836358333267538862092116975887264",
                    "38864337599114862581871324515683262523",
                    "35506126056635191120134123765526725509",
                    "274252804568141548430669211576527300341",
                    "114264929086978254196707874989496860201",
                    "193917498940285634015113041391721839910",
                    "269007645675242652289343423548548410051",
                    "251011635336640036980823830930925547522",
                    "318085585267862951496864666866506085406",
                    "32116902297251921444930698209727560727",
                    "323205392654266556555657332387270785766"
                ]
            },
            "id": "ASB-A-178725766-74e55351",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/system/nfc/+/147b052f8456872081c18af85573eeb186c6efc2",
            "target": {
                "file": "src/nfc/tags/rw_mfc.cc"
            }
        },
        {
            "digest": {
                "length": 1392.0,
                "function_hash": "56645022171651191069229893407278072538"
            },
            "id": "ASB-A-178725766-b39d9135",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/system/nfc/+/147b052f8456872081c18af85573eeb186c6efc2",
            "target": {
                "function": "rw_mfc_handle_read_op",
                "file": "src/nfc/tags/rw_mfc.cc"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/system/nfc/+/147b052f8456872081c18af85573eeb186c6efc2"
    ],
    "types": [
        "RCE"
    ],
    "spl": "2021-04-01",
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-178725766.json"

Android / platform/system/nfc

Package

Name
platform/system/nfc

Affected ranges

Type
ECOSYSTEM
Events
Introduced
11:0
Fixed
11:2021-04-01

Affected versions

Other
11

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "96286498381106398995438837450991210433",
                    "231417792723668579429895987669067954210",
                    "28365524993106854423848162659127831792",
                    "275234176995760180664424792344073227614",
                    "11447692766712693790054707364558551516",
                    "306605473653864100108542188896959042454",
                    "116294950756372123268645695692917584504",
                    "1728836358333267538862092116975887264",
                    "38864337599114862581871324515683262523",
                    "35506126056635191120134123765526725509",
                    "274252804568141548430669211576527300341",
                    "114264929086978254196707874989496860201",
                    "193917498940285634015113041391721839910",
                    "269007645675242652289343423548548410051",
                    "251011635336640036980823830930925547522",
                    "318085585267862951496864666866506085406",
                    "32116902297251921444930698209727560727",
                    "323205392654266556555657332387270785766"
                ]
            },
            "id": "ASB-A-178725766-922292c7",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/system/nfc/+/147b052f8456872081c18af85573eeb186c6efc2",
            "target": {
                "file": "src/nfc/tags/rw_mfc.cc"
            }
        },
        {
            "digest": {
                "length": 1392.0,
                "function_hash": "56645022171651191069229893407278072538"
            },
            "id": "ASB-A-178725766-983c469a",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/system/nfc/+/147b052f8456872081c18af85573eeb186c6efc2",
            "target": {
                "function": "rw_mfc_handle_read_op",
                "file": "src/nfc/tags/rw_mfc.cc"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/system/nfc/+/147b052f8456872081c18af85573eeb186c6efc2"
    ],
    "types": [
        "RCE"
    ],
    "spl": "2021-04-01",
    "severity": "Critical"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-178725766.json"