ASB-A-209446496
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-209446496.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-209446496
- Aliases
-
- A-209446496
- CVE-2021-39807
- Published
- 2022-04-01T00:00:00Z
- Modified
- 2026-04-17T15:55:28.020024Z
- Summary
- [none]
- Details
-
In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to enable NFC from the Guest account due to a missing permission check. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 262.0,
"function_hash": "282752491468255757792423787937123980138"
},
"id": "ASB-A-209446496-14ed56f9",
"deprecated": false,
"target": {
"function": "getNonIndexableKeys",
"file": "src/com/android/settings/connecteddevice/AdvancedConnectedDeviceDashboardFragment.java"
},
"signature_type": "Function",
"match_only_versions": [
"10"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2",
"signature_version": "v1"
},
{
"digest": {
"length": 547.0,
"function_hash": "44364368635206463946580718456940636632"
},
"id": "ASB-A-209446496-155a3c4b",
"deprecated": false,
"target": {
"function": "handleNfcStateChanged",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
},
"signature_type": "Function",
"match_only_versions": [
"10"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2",
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"104640340823179530859982387541045009359",
"54077344772517366223645446965945596572",
"57316047783306358646712498073955376079"
]
},
"id": "ASB-A-209446496-28d88cbd",
"deprecated": false,
"target": {
"file": "src/com/android/settings/nfc/SecureNfcPreferenceController.java"
},
"signature_type": "Line",
"match_only_versions": [
"10"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2",
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"24929154912866296258003856795052035698",
"102985994623774707472884171700885947163",
"28629836810280458568764820646968600580",
"157372545684039080746348332028554779667",
"248037606502086375276121672084761026974",
"244779512637814176098350952546511676167",
"91852767605856262281093661707503156980",
"179424779785096709195201883026574155013",
"167406583980043863501189067292388973488",
"226208579727948403648167630623307804907",
"206422986024070089075164415342025238466",
"120323037648485951366567017292489195608",
"222717576057888766947304829867241126022",
"176716013815801271371011895249285319184",
"340046370131221628976650780733953479947",
"24981409069758245919959226956839528696",
"255288383093687017670599869428382125856",
"75407180318704451699303769443305508093"
]
},
"id": "ASB-A-209446496-534a0194",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2",
"target": {
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
},
{
"digest": {
"length": 82.0,
"function_hash": "127039390748364425891178181785151239171"
},
"id": "ASB-A-209446496-c091c940",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2",
"target": {
"function": "SecureNfcEnabler",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"78665594081758831960176424858478020825",
"171071211868076758317199496074877610806",
"93959810514345626888469960487788463701",
"89036061155262175367535221140820362232",
"39102001788302046623454440679496411262",
"191746087133540115132130798065738436759",
"156072748411938088002050525166400795974",
"150578447178704079897889964007817892065",
"79407049416702579768023041517668425937",
"45601423319242074519627616342741264430",
"142054889039160123904375712824533928056",
"250776634068925222533131529590206841548",
"135524816208115480152044850452397667319"
]
},
"id": "ASB-A-209446496-cd1fe353",
"deprecated": false,
"target": {
"file": "src/com/android/settings/connecteddevice/AdvancedConnectedDeviceDashboardFragment.java"
},
"signature_type": "Line",
"match_only_versions": [
"10"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2",
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/4e543a38f6037cee6f6237c755d9fdc00270d6e2"
],
"types": [
"EoP"
],
"spl": "2022-04-05",
"severity": "High"
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 82.0,
"function_hash": "127039390748364425891178181785151239171"
},
"id": "ASB-A-209446496-13ed9dfc",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"function": "SecureNfcEnabler",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"41316701183679083181387877749634756102",
"41790578179167789807707609587394117715",
"164918464923637698435955425395342737892",
"325290779790417954361537207831400346090"
]
},
"id": "ASB-A-209446496-7509c555",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"file": "src/com/android/settings/connecteddevice/NfcAndPaymentFragment.java"
}
},
{
"digest": {
"length": 547.0,
"function_hash": "44364368635206463946580718456940636632"
},
"id": "ASB-A-209446496-a9725a5a",
"deprecated": false,
"target": {
"function": "handleNfcStateChanged",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
},
"signature_type": "Function",
"match_only_versions": [
"11"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"24929154912866296258003856795052035698",
"102985994623774707472884171700885947163",
"28629836810280458568764820646968600580",
"157372545684039080746348332028554779667",
"248037606502086375276121672084761026974",
"244779512637814176098350952546511676167",
"91852767605856262281093661707503156980",
"179424779785096709195201883026574155013",
"167406583980043863501189067292388973488",
"226208579727948403648167630623307804907",
"206422986024070089075164415342025238466",
"120323037648485951366567017292489195608",
"222717576057888766947304829867241126022",
"176716013815801271371011895249285319184",
"340046370131221628976650780733953479947",
"24981409069758245919959226956839528696",
"255288383093687017670599869428382125856",
"75407180318704451699303769443305508093"
]
},
"id": "ASB-A-209446496-af069f0a",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda"
],
"types": [
"EoP"
],
"spl": "2022-04-05",
"severity": "High"
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"24929154912866296258003856795052035698",
"102985994623774707472884171700885947163",
"28629836810280458568764820646968600580",
"157372545684039080746348332028554779667",
"248037606502086375276121672084761026974",
"244779512637814176098350952546511676167",
"91852767605856262281093661707503156980",
"179424779785096709195201883026574155013",
"167406583980043863501189067292388973488",
"226208579727948403648167630623307804907",
"206422986024070089075164415342025238466",
"120323037648485951366567017292489195608",
"222717576057888766947304829867241126022",
"176716013815801271371011895249285319184",
"340046370131221628976650780733953479947",
"24981409069758245919959226956839528696",
"255288383093687017670599869428382125856",
"75407180318704451699303769443305508093"
]
},
"id": "ASB-A-209446496-3711e05f",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"41316701183679083181387877749634756102",
"41790578179167789807707609587394117715",
"164918464923637698435955425395342737892",
"325290779790417954361537207831400346090"
]
},
"id": "ASB-A-209446496-37e5e0b6",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"file": "src/com/android/settings/connecteddevice/NfcAndPaymentFragment.java"
}
},
{
"digest": {
"length": 82.0,
"function_hash": "127039390748364425891178181785151239171"
},
"id": "ASB-A-209446496-98528833",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"function": "SecureNfcEnabler",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
},
{
"digest": {
"length": 547.0,
"function_hash": "44364368635206463946580718456940636632"
},
"id": "ASB-A-209446496-d1bcc919",
"deprecated": false,
"target": {
"function": "handleNfcStateChanged",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
},
"signature_type": "Function",
"match_only_versions": [
"12"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda"
],
"types": [
"EoP"
],
"spl": "2022-04-05",
"severity": "High"
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 547.0,
"function_hash": "44364368635206463946580718456940636632"
},
"id": "ASB-A-209446496-149b0a37",
"deprecated": false,
"target": {
"function": "handleNfcStateChanged",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
},
"signature_type": "Function",
"match_only_versions": [
"12L"
],
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"signature_version": "v1"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"24929154912866296258003856795052035698",
"102985994623774707472884171700885947163",
"28629836810280458568764820646968600580",
"157372545684039080746348332028554779667",
"248037606502086375276121672084761026974",
"244779512637814176098350952546511676167",
"91852767605856262281093661707503156980",
"179424779785096709195201883026574155013",
"167406583980043863501189067292388973488",
"226208579727948403648167630623307804907",
"206422986024070089075164415342025238466",
"120323037648485951366567017292489195608",
"222717576057888766947304829867241126022",
"176716013815801271371011895249285319184",
"340046370131221628976650780733953479947",
"24981409069758245919959226956839528696",
"255288383093687017670599869428382125856",
"75407180318704451699303769443305508093"
]
},
"id": "ASB-A-209446496-1ae95b82",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"41316701183679083181387877749634756102",
"41790578179167789807707609587394117715",
"164918464923637698435955425395342737892",
"325290779790417954361537207831400346090"
]
},
"id": "ASB-A-209446496-ce9d5563",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"file": "src/com/android/settings/connecteddevice/NfcAndPaymentFragment.java"
}
},
{
"digest": {
"length": 82.0,
"function_hash": "127039390748364425891178181785151239171"
},
"id": "ASB-A-209446496-fd5fd5b4",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda",
"target": {
"function": "SecureNfcEnabler",
"file": "src/com/android/settings/nfc/SecureNfcEnabler.java"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/a579ca7554dcbfd3fce1c90451fb54cb676cfdda"
],
"types": [
"EoP"
],
"spl": "2022-04-05",
"severity": "High"
}