CVE-2021-0513

EIP tracks 1 public exploit for CVE-2021-0513. PoCs published by nanopathi.

AI-analyzed exploit summary This repository contains functional exploit code for CVE-2021-0513, targeting Android's autofill framework. The provided test cases demonstrate the vulnerability by manipulating autofill service interactions, including focus handling and service responses.

In deleteNotificationChannel and related functions of NotificationManagerService.java, there is a possible permission bypass due to improper state validation. This could lead to local escalation of privilege via hidden services with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-156090809