{"id":"ASB-A-184046278","details":"In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access contacts and history bookmarks without permission due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-184046278","CVE-2021-0953"],"modified":"2026-05-22T15:55:21.353668239Z","published":"2021-12-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2021-12-01"}],"affected":[{"package":{"name":"platform/packages/apps/QuickSearchBox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"9:0"},{"fixed":"9:2021-12-01"}]}],"versions":["9"],"ecosystem_specific":{"spl":"2021-12-01","fixes":["https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188"],"severity":"High","types":["EoP"],"vanir_signatures":[{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java"},"id":"ASB-A-184046278-6b36b0dd","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Line","digest":{"line_hashes":["166902988781562001802179094443786026920","4603613469389726059244767091161022984","317465663099566999535136987815160284504","13635714733259997166812580850938143114"],"threshold":0.9}},{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java","function":"setOnClickActivityIntent"},"id":"ASB-A-184046278-e0ac779c","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Function","digest":{"function_hash":"44459358454518948558358821354827334476","length":168}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-184046278.json"}},{"package":{"name":"platform/packages/apps/QuickSearchBox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"10:0"},{"fixed":"10:2021-12-01"}]}],"versions":["10"],"ecosystem_specific":{"spl":"2021-12-01","fixes":["https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188"],"severity":"High","types":["EoP"],"vanir_signatures":[{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java","function":"setOnClickActivityIntent"},"id":"ASB-A-184046278-1684cc44","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Function","digest":{"function_hash":"44459358454518948558358821354827334476","length":168}},{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java"},"id":"ASB-A-184046278-72220f6f","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Line","digest":{"line_hashes":["166902988781562001802179094443786026920","4603613469389726059244767091161022984","317465663099566999535136987815160284504","13635714733259997166812580850938143114"],"threshold":0.9}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-184046278.json"}},{"package":{"name":"platform/packages/apps/QuickSearchBox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"11:0"},{"fixed":"11:2021-12-01"}]}],"versions":["11"],"ecosystem_specific":{"spl":"2021-12-01","fixes":["https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188"],"severity":"High","types":["EoP"],"vanir_signatures":[{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java","function":"setOnClickActivityIntent"},"id":"ASB-A-184046278-d92136b2","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Function","digest":{"function_hash":"44459358454518948558358821354827334476","length":168}},{"source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java"},"id":"ASB-A-184046278-f639321d","deprecated":false,"signature_type":"Line","digest":{"line_hashes":["166902988781562001802179094443786026920","4603613469389726059244767091161022984","317465663099566999535136987815160284504","13635714733259997166812580850938143114"],"threshold":0.9}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-184046278.json"}},{"package":{"name":"platform/packages/apps/QuickSearchBox","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2021-12-01"}]}],"versions":["12"],"ecosystem_specific":{"spl":"2021-12-01","fixes":["https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188"],"severity":"High","types":["EoP"],"vanir_signatures":[{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java","function":"setOnClickActivityIntent"},"id":"ASB-A-184046278-966e5e0c","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Function","digest":{"function_hash":"44459358454518948558358821354827334476","length":168}},{"deprecated":false,"signature_version":"v1","target":{"file":"src/com/android/quicksearchbox/SearchWidgetProvider.java"},"id":"ASB-A-184046278-a3d4c3da","source":"https://android.googlesource.com/platform/packages/apps/QuickSearchBox/+/ae2c873754cd8c54ce8a76aacbc0e1a0bf827188","signature_type":"Line","digest":{"line_hashes":["166902988781562001802179094443786026920","4603613469389726059244767091161022984","317465663099566999535136987815160284504","13635714733259997166812580850938143114"],"threshold":0.9}}]},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-184046278.json"}}],"schema_version":"1.7.5"}