CVE-2021-25515

NVD

CWE

An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows attackers to access BSSID.

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Name	Vendor	Start Version	End Version
Android	Google	9.0 (including)	9.0 (including)
Android	Google	10.0 (including)	10.0 (including)
Android	Google	11.0 (including)	11.0 (including)

Improper Privilege Management