CVE-2021-23243

EUVD-2021-10342
In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Affected Products (NVD)
VendorProductVersion
googleandroid
11.0
𝑥
= Vulnerable software versions
References
https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800
https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800