CVE-2021-1048 – Google / Android – Use after free

CVE-2021-1048 is a use after free vulnerability impacting Google Android. A proof of concept (PoC) was not observed publicly or in the underground. Google claimed to be aware of the vulnerability being actively exploited in the wild.

Summary:

CVE-2021-1048 is a use after free vulnerability impacting Google Android. A proof of concept (PoC) was not observed publicly or in the underground. Google claimed to be aware of the vulnerability being actively exploited in the wild.

PoC Links(if available):

Google Android exploitation information –
https://source.android.com/security/bulletin/2021-11-01

Known Counter Measures:

Google addressed the vulnerability in an Android security bulletin with updated versions.

Links to patches(if available)

https://source.android.com/security/bulletin/2021-11-01