2021 CVE Vulnerabilities
23,431 CVEs published in 2021.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2021-1015 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In getMeidForSlot of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, witho... |
| CVE-2021-0995 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In registerSuggestionConnectionStatusListener of WifiServiceImpl.java, there is a possible way to determine whether an a... |
| CVE-2021-0994 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine whether an app is install... |
| CVE-2021-0992 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app without user consent d... |
| CVE-2021-0991 | LOW | 2.4 | 0.2% | Dec 15, 2021 | In OnMetadataChangedListener of AdvancedBluetoothDetailsHeaderController.java, there is a possible leak of Bluetooth MAC... |
| CVE-2021-0990 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In getDeviceId of PhoneSubInfoController.java, there is a possible way to determine whether an app is installed, without... |
| CVE-2021-0989 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In hasManageOngoingCallsPermission of TelecomServiceImpl.java, there is a possible way to determine whether an app is in... |
| CVE-2021-0988 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In getLaunchedFromUid and getLaunchedFromPackage of ActivityClientController.java, there is a possible way to determine ... |
| CVE-2021-0987 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In getNeighboringCellInfo of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installe... |
| CVE-2021-0983 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible disclosure of information about inst... |
| CVE-2021-0982 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible organization name disclosure due t... |
| CVE-2021-0978 | LOW | 3.3 | 0.1% | Dec 15, 2021 | In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to determine whether an app is in... |
| CVE-2021-42070 | LOW | 3.3 | 0.5% | Dec 14, 2021 | When a user opens manipulated Jupiter Tessellation (.jt) file received from untrusted sources in SAP 3D Visual Enterpris... |
| CVE-2021-42069 | LOW | 3.3 | 1.0% | Dec 14, 2021 | When a user opens manipulated Tagged Image File Format (.tif) file received from untrusted sources in SAP 3D Visual Ente... |
| CVE-2021-42068 | LOW | 3.3 | 0.5% | Dec 14, 2021 | When a user opens a manipulated GIF (.gif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - ver... |
| CVE-2021-44448 | LOW | 3.3 | 0.5% | Dec 14, 2021 | A vulnerability has been identified in JT Utilities (All versions < V13.0.3.0), JTTK (All versions < V11.0.3.0). JTTK li... |
| CVE-2021-44444 | LOW | 3.3 | 1.1% | Dec 14, 2021 | A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All versions < V11.1.1.0). JTTK li... |
| CVE-2021-44436 | LOW | 3.3 | 0.5% | Dec 14, 2021 | A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All versions < V11.1.1.0). JTTK li... |
| CVE-2021-44431 | LOW | 3.3 | 0.5% | Dec 14, 2021 | A vulnerability has been identified in JT Utilities (All versions < V13.1.1.0), JTTK (All versions < V11.1.1.0). JTTK li... |
| CVE-2021-39945 | LOW | 2.7 | 0.9% | Dec 13, 2021 | Improper access control in the GitLab CE/EE API affecting all versions starting from 9.4 before 14.3.6, all versions sta... |
| CVE-2021-25527 | LOW | 3.3 | 0.2% | Dec 8, 2021 | Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allo... |
| CVE-2021-25524 | LOW | 3.3 | 0.2% | Dec 8, 2021 | Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID... |
| CVE-2021-25523 | LOW | 3.3 | 0.2% | Dec 8, 2021 | Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Acco... |
| CVE-2021-25522 | LOW | 3.3 | 0.2% | Dec 8, 2021 | Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to a... |
| CVE-2021-25521 | LOW | 3.3 | 0.2% | Dec 8, 2021 | Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get ... |
Check if your code is affected by 2021 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now