CVE-2021-0475

HIGH

Android -11, Android-10 - Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-0475. PoCs published by ShaikUsaf.

AI-analyzed exploit summary This repository contains the Fluoride Bluetooth stack source code, including build instructions and documentation. It does not include an exploit PoC but provides the source code for the vulnerable component (CVE-2021-0475).

Description

In on_l2cap_data_ind of btif_sock_l2cap.cc, there is possible memory corruption due to a use after free. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-175686168

Exploits (1)

nomisec WRITEUP

by ShaikUsaf · poc

https://github.com/ShaikUsaf/system_bt_AOSP10_r33_CVE-2021-0475

View Code ZIP pw:eip

This repository contains the Fluoride Bluetooth stack source code, including build instructions and documentation. It does not include an exploit PoC but provides the source code for the vulnerable component (CVE-2021-0475).

Classification

Writeup 90%

Attack Type

Other

Complexity

Complex

Reliability

Theoretical

Target: Android Bluetooth stack (Fluoride)

No auth needed

Prerequisites: Access to the vulnerable Bluetooth stack

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_misc

https://source.android.com/security/bulletin/2021-05-01

Scores

CVSS v3 8.8

EPSS 0.0098

EPSS Percentile 57.5%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (2)

google/android 10.0

google/android 11.0

Published Jun 11, 2021

Tracked Since Feb 18, 2026