CVE-2021-0920

MEDIUM - CVSS 6.4CWE-362, CWE-416

Published: 12/15/2021

Modified: 10/23/2025

In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-196926917References: Upstream kernel

Vulnerability Summary

CVSS v3 Score

6.4MEDIUM

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS v2 Score

6.9

AV:L/AC:M/Au:N/C:C/I:C/A:C

CWE Classification

CWE-362 CWE-416