cvelistv5 - CVE-2021-23243

CVE-2021-23243 (GCVE-0-2021-23243)

Vulnerability from cvelistv5 – Published: 2021-09-27 12:11 – Updated: 2024-08-03 19:05

Summary

In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.

Severity ?

No CVSS data available.

CWE

Elevation of Privilege

Assigner

OPPO

References

URL

Tags

https://security.oppo.com/en/noticeDetail?notice_…

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	OPPO Android Phone with Qualcomm chipset	Affected: OPPO Mobile phones with Qualcomm chipset and Android 11 versions

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T19:05:54.467Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "OPPO Android Phone with Qualcomm chipset",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "OPPO Mobile phones with Qualcomm chipset and Android 11 versions"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Elevation of Privilege",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-09-27T12:11:01",
        "orgId": "7f2b1ad8-5432-4d64-91a1-9099af1cc695",
        "shortName": "OPPO"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@oppo.com",
          "ID": "CVE-2021-23243",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "OPPO Android Phone with Qualcomm chipset",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "OPPO Mobile phones with Qualcomm chipset and Android 11 versions"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Elevation of Privilege"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800",
              "refsource": "MISC",
              "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "7f2b1ad8-5432-4d64-91a1-9099af1cc695",
    "assignerShortName": "OPPO",
    "cveId": "CVE-2021-23243",
    "datePublished": "2021-09-27T12:11:01",
    "dateReserved": "2021-01-08T00:00:00",
    "dateUpdated": "2024-08-03T19:05:54.467Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"109DD7FD-3A48-4C3D-8E1A-4433B98E1E64\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a12:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC4A34AC-D58E-4384-ADB8-95C826FAAC65\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a15:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1D683A5-6503-48E5-A603-8ED4BBDAC041\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a15s:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"26B95D08-F545-453C-A7CF-CB29AEB6B374\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a31:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F1474E8-D6E8-4E31-A3C3-CF6526C2637A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a33:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FBF29167-35FD-4DC0-A739-E9E2A4C2B078\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a5_2020:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"19178712-31F1-4C62-9ADB-2BC45FA210AD\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a52:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43DC56B8-D070-4233-A4CF-7513323F8E56\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a53:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74C625DB-08A6-4C94-B1F6-3D4447B748F2\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a54_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB8B1931-1508-4009-8CA8-448207947C4E\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a73_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33C58E99-8B16-4CC0-8C9B-CB16630821D4\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a74_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CCF81330-A913-4B71-8D2D-FC9CDC8BCD5A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a9_2020:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9DF9AFD2-81E0-4303-9AC9-35FCD42141A1\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a91:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4EE1459F-DCF0-449B-B49E-34A5D9C99DB1\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a92:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6D77333-0834-4158-A5D0-0340852D3825\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a93:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A645B6D-FDA0-4FCE-8B72-B03C241825E6\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_a94:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C660EF7A-9C7D-4394-8B06-0788150B866C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6ABC850A-1853-487D-B710-95ECAC02B56B\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:marvel\\\\\u0027s_avengers:*:*:*\", \"matchCriteriaId\": \"7B757662-E5A4-42A7-B54D-24E3DFFD201C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_find_x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93D8FE34-DCBB-45A0-A277-40E7AF822CC4\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_find_x_lamborghini:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"239A5B51-C772-4BC5-8A8E-55C9B296BEE5\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_find_x2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEF3067B-DD59-4D38-9D54-FD20CF7F25FC\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"396CFBD4-82D4-4568-9DF6-5375DC4E1A74\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:automobili_lamborghini:*:*:*\", \"matchCriteriaId\": \"25A7293B-4F4A-43AE-873B-C7419BB6B4E5\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_find_x3_pro:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A327EB1-965B-48E6-8A64-6BF679F6CFFD\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno:-:*:*:*:fc_barcelona:*:*:*\", \"matchCriteriaId\": \"BC95CF94-6058-4B0B-B0E4-22C4F364F5FE\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno_10x_zoom:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA1EC4A2-9DE8-4CB5-B7D6-85F943600FB4\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3CF1320-A224-4978-A5AC-21792658BA82\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno_z:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F917421-E9E2-4F5A-B9B8-C8E3027095EB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno3:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EAA3A68-D8F6-4645-ADCB-37E4763B170E\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno3_pro:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF5A0B44-794C-49E3-B6DB-8B02BD71D60C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno4_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB00864C-D180-4930-A87F-C6A52185B823\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno4_pro_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A5B0C17-46AF-43AA-8820-1399DB5135B3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno4_z_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88A6A955-54B9-421C-9214-A7DF6D550953\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno5_4g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"559BBD43-009A-47AC-97F3-7F675ABCEDEE\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno5_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B559D1B1-BA2F-41CB-B03F-0BA40A342745\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_reno5_pro_5g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F331A0F-DD8F-4A4C-9C65-9FA319A80CAF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:oppo:oppo_x_2021:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8673131-8300-4BE8-BB75-85B9D91ACABA\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.\"}, {\"lang\": \"es\", \"value\": \"En la aplicaci\\u00f3n de la bater\\u00eda de Oppo, el SDK de terceros proporciona la funci\\u00f3n de cargar un proveedor de terceros, que puede ser usada\"}]",
      "id": "CVE-2021-23243",
      "lastModified": "2024-11-21T05:51:26.430",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 4.6, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.9, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-09-27T13:15:07.670",
      "references": "[{\"url\": \"https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800\", \"source\": \"security@oppo.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "security@oppo.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-23243\",\"sourceIdentifier\":\"security@oppo.com\",\"published\":\"2021-09-27T13:15:07.670\",\"lastModified\":\"2024-11-21T05:51:26.430\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.\"},{\"lang\":\"es\",\"value\":\"En la aplicaci\u00f3n de la bater\u00eda de Oppo, el SDK de terceros proporciona la funci\u00f3n de cargar un proveedor de terceros, que puede ser usada\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"109DD7FD-3A48-4C3D-8E1A-4433B98E1E64\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a12:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC4A34AC-D58E-4384-ADB8-95C826FAAC65\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a15:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1D683A5-6503-48E5-A603-8ED4BBDAC041\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a15s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26B95D08-F545-453C-A7CF-CB29AEB6B374\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a31:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F1474E8-D6E8-4E31-A3C3-CF6526C2637A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a33:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBF29167-35FD-4DC0-A739-E9E2A4C2B078\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a5_2020:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19178712-31F1-4C62-9ADB-2BC45FA210AD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a52:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43DC56B8-D070-4233-A4CF-7513323F8E56\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a53:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74C625DB-08A6-4C94-B1F6-3D4447B748F2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a54_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB8B1931-1508-4009-8CA8-448207947C4E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a73_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C58E99-8B16-4CC0-8C9B-CB16630821D4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a74_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCF81330-A913-4B71-8D2D-FC9CDC8BCD5A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a9_2020:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DF9AFD2-81E0-4303-9AC9-35FCD42141A1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a91:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4EE1459F-DCF0-449B-B49E-34A5D9C99DB1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a92:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6D77333-0834-4158-A5D0-0340852D3825\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a93:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A645B6D-FDA0-4FCE-8B72-B03C241825E6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_a94:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C660EF7A-9C7D-4394-8B06-0788150B866C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ABC850A-1853-487D-B710-95ECAC02B56B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:marvel\\\\\u0027s_avengers:*:*:*\",\"matchCriteriaId\":\"7B757662-E5A4-42A7-B54D-24E3DFFD201C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_find_x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93D8FE34-DCBB-45A0-A277-40E7AF822CC4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_find_x_lamborghini:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"239A5B51-C772-4BC5-8A8E-55C9B296BEE5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_find_x2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEF3067B-DD59-4D38-9D54-FD20CF7F25FC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"396CFBD4-82D4-4568-9DF6-5375DC4E1A74\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:automobili_lamborghini:*:*:*\",\"matchCriteriaId\":\"25A7293B-4F4A-43AE-873B-C7419BB6B4E5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_find_x3_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A327EB1-965B-48E6-8A64-6BF679F6CFFD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno:-:*:*:*:fc_barcelona:*:*:*\",\"matchCriteriaId\":\"BC95CF94-6058-4B0B-B0E4-22C4F364F5FE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno_10x_zoom:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA1EC4A2-9DE8-4CB5-B7D6-85F943600FB4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3CF1320-A224-4978-A5AC-21792658BA82\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno_z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F917421-E9E2-4F5A-B9B8-C8E3027095EB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EAA3A68-D8F6-4645-ADCB-37E4763B170E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno3_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF5A0B44-794C-49E3-B6DB-8B02BD71D60C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno4_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB00864C-D180-4930-A87F-C6A52185B823\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno4_pro_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A5B0C17-46AF-43AA-8820-1399DB5135B3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno4_z_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88A6A955-54B9-421C-9214-A7DF6D550953\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno5_4g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"559BBD43-009A-47AC-97F3-7F675ABCEDEE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno5_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B559D1B1-BA2F-41CB-B03F-0BA40A342745\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_reno5_pro_5g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F331A0F-DD8F-4A4C-9C65-9FA319A80CAF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:oppo:oppo_x_2021:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8673131-8300-4BE8-BB75-85B9D91ACABA\"}]}]}],\"references\":[{\"url\":\"https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800\",\"source\":\"security@oppo.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

GSD-2021-23243

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.

Aliases

CVE-2021-23243

Aliases

CVE-2021-23243

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-23243",
    "description": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.",
    "id": "GSD-2021-23243"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-23243"
      ],
      "details": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.",
      "id": "GSD-2021-23243",
      "modified": "2023-12-13T01:23:30.395619Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@oppo.com",
        "ID": "CVE-2021-23243",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "OPPO Android Phone with Qualcomm chipset",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "OPPO Mobile phones with Qualcomm chipset and Android 11 versions"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Elevation of Privilege"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800",
            "refsource": "MISC",
            "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a12:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a15:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a15s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a31:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a33:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a52:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a53:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a54_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a5_2020:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a73_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a74_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a91:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a92:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a93:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a94:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_a9_2020:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:marvel\\\u0027s_avengers:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_find_x:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_find_x2:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:automobili_lamborghini:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_find_x3_pro:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_find_x_lamborghini:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno:-:*:*:*:fc_barcelona:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno3:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno3_pro:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno4_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno4_pro_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno4_z_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno5_4g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno5_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno5_pro_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno_10x_zoom:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno_5g:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_reno_z:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:oppo:oppo_x_2021:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@oppo.com",
          "ID": "CVE-2021-23243"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-269"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2021-10-05T20:13Z",
      "publishedDate": "2021-09-27T13:15Z"
    }
  }
}

GHSA-FWFW-QRV2-XVWQ

Vulnerability from github – Published: 2022-05-24 19:15 – Updated: 2022-05-24 19:15

Details

In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-23243"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-269"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-09-27T13:15:00Z",
    "severity": "HIGH"
  },
  "details": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.",
  "id": "GHSA-fwfw-qrv2-xvwq",
  "modified": "2022-05-24T19:15:52Z",
  "published": "2022-05-24T19:15:52Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23243"
    },
    {
      "type": "WEB",
      "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2021-23243

Vulnerability from fkie_nvd - Published: 2021-09-27 13:15 - Updated: 2024-11-21 05:51

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.

References

	URL	Tags
	security@oppo.com	https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800	Vendor Advisory

Impacted products

Vendor	Product	Version
google	android	11.0
oppo	oppo_a12	-
oppo	oppo_a15	-
oppo	oppo_a15s	-
oppo	oppo_a31	-
oppo	oppo_a33	-
oppo	oppo_a5_2020	-
oppo	oppo_a52	-
oppo	oppo_a53	-
oppo	oppo_a54_5g	-
oppo	oppo_a73_5g	-
oppo	oppo_a74_5g	-
oppo	oppo_a9_2020	-
oppo	oppo_a91	-
oppo	oppo_a92	-
oppo	oppo_a93	-
oppo	oppo_a94	-
oppo	oppo_f11_pro	-
oppo	oppo_f11_pro	-
oppo	oppo_find_x	-
oppo	oppo_find_x_lamborghini	-
oppo	oppo_find_x2	-
oppo	oppo_find_x2_pro	-
oppo	oppo_find_x2_pro	-
oppo	oppo_find_x3_pro	-
oppo	oppo_reno	-
oppo	oppo_reno_10x_zoom	-
oppo	oppo_reno_5g	-
oppo	oppo_reno_z	-
oppo	oppo_reno3	-
oppo	oppo_reno3_pro	-
oppo	oppo_reno4_5g	-
oppo	oppo_reno4_pro_5g	-
oppo	oppo_reno4_z_5g	-
oppo	oppo_reno5_4g	-
oppo	oppo_reno5_5g	-
oppo	oppo_reno5_pro_5g	-
oppo	oppo_x_2021	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "109DD7FD-3A48-4C3D-8E1A-4433B98E1E64",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a12:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC4A34AC-D58E-4384-ADB8-95C826FAAC65",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a15:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1D683A5-6503-48E5-A603-8ED4BBDAC041",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a15s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26B95D08-F545-453C-A7CF-CB29AEB6B374",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a31:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F1474E8-D6E8-4E31-A3C3-CF6526C2637A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a33:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBF29167-35FD-4DC0-A739-E9E2A4C2B078",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a5_2020:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19178712-31F1-4C62-9ADB-2BC45FA210AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a52:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43DC56B8-D070-4233-A4CF-7513323F8E56",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a53:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "74C625DB-08A6-4C94-B1F6-3D4447B748F2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a54_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB8B1931-1508-4009-8CA8-448207947C4E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a73_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "33C58E99-8B16-4CC0-8C9B-CB16630821D4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a74_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCF81330-A913-4B71-8D2D-FC9CDC8BCD5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a9_2020:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9DF9AFD2-81E0-4303-9AC9-35FCD42141A1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a91:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EE1459F-DCF0-449B-B49E-34A5D9C99DB1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a92:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6D77333-0834-4158-A5D0-0340852D3825",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a93:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A645B6D-FDA0-4FCE-8B72-B03C241825E6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_a94:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C660EF7A-9C7D-4394-8B06-0788150B866C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6ABC850A-1853-487D-B710-95ECAC02B56B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_f11_pro:-:*:*:*:marvel\\\u0027s_avengers:*:*:*",
              "matchCriteriaId": "7B757662-E5A4-42A7-B54D-24E3DFFD201C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_find_x:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "93D8FE34-DCBB-45A0-A277-40E7AF822CC4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_find_x_lamborghini:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "239A5B51-C772-4BC5-8A8E-55C9B296BEE5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_find_x2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DEF3067B-DD59-4D38-9D54-FD20CF7F25FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "396CFBD4-82D4-4568-9DF6-5375DC4E1A74",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_find_x2_pro:-:*:*:*:automobili_lamborghini:*:*:*",
              "matchCriteriaId": "25A7293B-4F4A-43AE-873B-C7419BB6B4E5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_find_x3_pro:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A327EB1-965B-48E6-8A64-6BF679F6CFFD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno:-:*:*:*:fc_barcelona:*:*:*",
              "matchCriteriaId": "BC95CF94-6058-4B0B-B0E4-22C4F364F5FE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno_10x_zoom:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA1EC4A2-9DE8-4CB5-B7D6-85F943600FB4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3CF1320-A224-4978-A5AC-21792658BA82",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno_z:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F917421-E9E2-4F5A-B9B8-C8E3027095EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno3:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9EAA3A68-D8F6-4645-ADCB-37E4763B170E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno3_pro:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF5A0B44-794C-49E3-B6DB-8B02BD71D60C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno4_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB00864C-D180-4930-A87F-C6A52185B823",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno4_pro_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A5B0C17-46AF-43AA-8820-1399DB5135B3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno4_z_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "88A6A955-54B9-421C-9214-A7DF6D550953",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno5_4g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "559BBD43-009A-47AC-97F3-7F675ABCEDEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno5_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B559D1B1-BA2F-41CB-B03F-0BA40A342745",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_reno5_pro_5g:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F331A0F-DD8F-4A4C-9C65-9FA319A80CAF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:oppo:oppo_x_2021:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8673131-8300-4BE8-BB75-85B9D91ACABA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In Oppo\u0027s battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used."
    },
    {
      "lang": "es",
      "value": "En la aplicaci\u00f3n de la bater\u00eda de Oppo, el SDK de terceros proporciona la funci\u00f3n de cargar un proveedor de terceros, que puede ser usada"
    }
  ],
  "id": "CVE-2021-23243",
  "lastModified": "2024-11-21T05:51:26.430",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2021-09-27T13:15:07.670",
  "references": [
    {
      "source": "security@oppo.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800"
    }
  ],
  "sourceIdentifier": "security@oppo.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-23243 (GCVE-0-2021-23243)

GSD-2021-23243

GHSA-FWFW-QRV2-XVWQ

FKIE_CVE-2021-23243

Tags

Sightings

Nomenclature