{"vulnerability": "CVE-2021-3974", "sightings": [{"uuid": "0254c03a-825f-487d-a7e2-5153f835fed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39742", "type": "seen", "source": "https://t.me/cibsecurity/39830", "content": "\u203c CVE-2021-39742 \u203c\n\nIn Voicemail, there is a possible way to retrieve a trackable identifier due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-186405602\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:30.000000Z"}, {"uuid": "f6a58e59-418a-4384-879f-5fa0abfc238b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39743", "type": "seen", "source": "https://t.me/cibsecurity/39845", "content": "\u203c CVE-2021-39743 \u203c\n\nIn PackageManager, there is a possible way to update the last usage time of another package due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-201534884\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:27.000000Z"}, {"uuid": "79a1461b-cbc6-475d-9ece-d21a2c43f742", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39744", "type": "seen", "source": "https://t.me/cibsecurity/39843", "content": "\u203c CVE-2021-39744 \u203c\n\nIn DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-192369136\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:43.000000Z"}, {"uuid": "3887d865-eda6-4b3c-88f2-c9c8c6faf0b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39746", "type": "seen", "source": "https://t.me/cibsecurity/39840", "content": "\u203c CVE-2021-39746 \u203c\n\nIn PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-194696395\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:41.000000Z"}, {"uuid": "4b447511-299a-48f3-8654-d0bd93ea404e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3974", "type": "seen", "source": "https://t.me/cibsecurity/32687", "content": "\u203c CVE-2021-3974 \u203c\n\nvim is vulnerable to Use After Free\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-19T14:29:17.000000Z"}]}