ASB-A-182584940
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-182584940.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-182584940
- Aliases
-
- A-182584940
- CVE-2021-0586
- Published
- 2021-07-01T00:00:00Z
- Modified
- 2026-06-16T15:04:57.126039127Z
- Summary
- [none]
- Details
-
In onCreate of DevicePickerFragment.java, there is a possible way to trick the user to select an unwanted bluetooth device due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android
platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"types": [
"EoP"
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/9d99e0b3ff7f05c464a22fe0e0d965d8468cdfc1"
],
"spl": "2021-07-01",
"vanir_signatures": [
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java"
},
"signature_type": "Line",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/9d99e0b3ff7f05c464a22fe0e0d965d8468cdfc1",
"digest": {
"line_hashes": [
"89754257172270225248411921435901208694",
"307449310241202561335784537161359314524",
"227119723983276548918280128525316827035",
"296513541006712726874310308423939158412",
"131006467505704856492643698964690847307"
],
"threshold": 0.9
},
"id": "ASB-A-182584940-5fb5f901"
},
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/9d99e0b3ff7f05c464a22fe0e0d965d8468cdfc1",
"signature_version": "v1",
"digest": {
"function_hash": "287896226157197123009156940119505803778",
"length": 115.0
},
"id": "ASB-A-182584940-adec9e5d",
"signature_type": "Function"
}
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"types": [
"EoP"
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/9d99e0b3ff7f05c464a22fe0e0d965d8468cdfc1"
],
"spl": "2021-07-01",
"vanir_signatures": [
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/9d99e0b3ff7f05c464a22fe0e0d965d8468cdfc1",
"digest": {
"function_hash": "287896226157197123009156940119505803778",
"length": 115.0
},
"id": "ASB-A-182584940-35f09c54",
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/9d99e0b3ff7f05c464a22fe0e0d965d8468cdfc1",
"digest": {
"line_hashes": [
"89754257172270225248411921435901208694",
"307449310241202561335784537161359314524",
"227119723983276548918280128525316827035",
"296513541006712726874310308423939158412",
"131006467505704856492643698964690847307"
],
"threshold": 0.9
},
"id": "ASB-A-182584940-af16ad7e",
"signature_type": "Line",
"signature_version": "v1"
}
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"types": [
"EoP"
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/68f799a4c6afc3b96b354d1b8b970780bb6cf58a"
],
"spl": "2021-07-01",
"vanir_signatures": [
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java"
},
"signature_type": "Line",
"digest": {
"line_hashes": [
"177151231869695681414206662620331202543",
"280964628619041218799080630881054782971",
"227119723983276548918280128525316827035",
"296513541006712726874310308423939158412",
"131006467505704856492643698964690847307"
],
"threshold": 0.9
},
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/68f799a4c6afc3b96b354d1b8b970780bb6cf58a",
"id": "ASB-A-182584940-17a32afe"
},
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/68f799a4c6afc3b96b354d1b8b970780bb6cf58a",
"digest": {
"function_hash": "287896226157197123009156940119505803778",
"length": 115.0
},
"id": "ASB-A-182584940-3eff1242",
"signature_type": "Function",
"signature_version": "v1"
}
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"types": [
"EoP"
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/68f799a4c6afc3b96b354d1b8b970780bb6cf58a"
],
"spl": "2021-07-01",
"vanir_signatures": [
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/68f799a4c6afc3b96b354d1b8b970780bb6cf58a",
"digest": {
"function_hash": "287896226157197123009156940119505803778",
"length": 115.0
},
"id": "ASB-A-182584940-4fce1b3f",
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "src/com/android/settings/bluetooth/DevicePickerActivity.java"
},
"signature_type": "Line",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/68f799a4c6afc3b96b354d1b8b970780bb6cf58a",
"digest": {
"line_hashes": [
"177151231869695681414206662620331202543",
"280964628619041218799080630881054782971",
"227119723983276548918280128525316827035",
"296513541006712726874310308423939158412",
"131006467505704856492643698964690847307"
],
"threshold": 0.9
},
"id": "ASB-A-182584940-7450b401"
}
]
}