PUB-A-169936038
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/PUB-A-169936038.json
- JSON Data
- https://api.osv.dev/v1/vulns/PUB-A-169936038
- Aliases
-
- A-169936038
- CVE-2021-0553
- Published
- 2021-06-01T00:00:00Z
- Modified
- 2026-01-21T16:24:32.566730Z
- Summary
- [none]
- Details
-
In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android / platform/packages/apps/Settings
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/f7ae52bed633d407767e54e6f72bd03e636d441f"
],
"vanir_signatures": [
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/f7ae52bed633d407767e54e6f72bd03e636d441f",
"deprecated": false,
"digest": {
"line_hashes": [
"159759314869150828135533413377244572893",
"296924473972724144855395304703216420406",
"272896680878176703335280775311208278755",
"305759227034993522462875475534594153979"
],
"threshold": 0.9
},
"signature_type": "Line",
"id": "PUB-A-169936038-0ae4c5c3",
"target": {
"file": "src/com/android/settings/applications/specialaccess/deviceadmin/DeviceAdminListPreferenceController.java"
}
},
{
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/f7ae52bed633d407767e54e6f72bd03e636d441f",
"deprecated": false,
"digest": {
"length": 595.0,
"function_hash": "130033121631613249146703716424997567582"
},
"signature_type": "Function",
"id": "PUB-A-169936038-bcb029ce",
"target": {
"function": "bindPreference",
"file": "src/com/android/settings/applications/specialaccess/deviceadmin/DeviceAdminListPreferenceController.java"
}
}
],
"types": [
"EoP"
],
"severity": "Moderate",
"spl": "2021-06-01"
}