CVE-2021-0114 is a vulnerability that affects various versions of Android, the mobile operating system developed by Google. The vulnerability exists in the Android System component and could allow an attacker to execute arbitrary code with elevated privileges, potentially leading to a complete compromise of the affected device. This flaw was assigned a CVSS score of 7.8 out of 10, indicating a high severity level.
The vulnerability was discovered and reported to Google in January 2021 by security researchers from the Chinese company Qihoo 360. Google promptly released a security patch for the vulnerability as part of the February 2021 Android Security Bulletin. However, due to the fragmented nature of the Android ecosystem, many devices may not have received the patch yet, leaving them vulnerable to attacks exploiting this flaw.
Attackers could exploit CVE-2021-0114 by using a malicious app to gain access to a user's device, then using the vulnerability to gain elevated privileges and execute harmful code. Users are advised to update their devices to the latest available security patch to protect themselves from this vulnerability. It also highlights the need for timely and consistent security updates across all devices to prevent such vulnerabilities from being exploited in the future.