March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – ICS: Schneider Electric Vulnerabilities
February 11, 2022Rewterz Threat Alert – APT MustangPanda – Active IOCs
February 11, 2022Rewterz Threat Advisory – ICS: Schneider Electric Vulnerabilities
February 11, 2022Rewterz Threat Alert – APT MustangPanda – Active IOCs
February 11, 2022
Severity
High
Analysis Summary
CVE-2021-39675
Google Android could allow a remote attacker to gain elevated privileges on the system, caused by a flaw in the System component. By sending a specially-crafted request, an attacker could exploit this vulnerability to gain elevated privileges.
CVE-2021-30317
Google Android could allow a local attacker to bypass security restrictions, caused by improper validation of program headers containing ELF metadata in Qualcomm closed-source components. By sending a specially-crafted request, an attacker could exploit this vulnerability to bypass image verification.
Impact
- Privilege Escalation
- Security Bypass
Indicators of Compromise
CVEs
- CVE-2021-39675
- CVE-2021-30317
Affected Vendors
- Google Andriod
Affected Products
- Google Android 12
Remediation
Upgrade to the latest version of Android, available from the Google Web site.