CVE-2021-0545: 
NixOS vulnerability analysis and mitigation

CVE-2021-0545 is a vulnerability discovered in Android's NFC server component, specifically in the phNxpNciHalprintres_status function of phNxpNciHal.cc file. The vulnerability was disclosed on June 22, 2021, affecting Android 11 systems. This security flaw involves a possible out-of-bounds write vulnerability due to a missing bounds check (NVD).

The vulnerability is classified as a CWE-787 (Out-of-bounds Write) type issue. It received a CVSS v3.1 Base Score of 6.7 (MEDIUM) with the vector string CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H. The CVSS v2.0 Base Score is 4.6 (MEDIUM) with the vector (AV:L/AC:L/Au:N/C:P/I:P/A:P) (NVD).

The vulnerability could lead to local escalation of privilege in the NFC server with System execution privileges. The impact includes potential unauthorized access to system resources and elevation of privileges, with high potential for confidentiality, integrity, and availability compromises (NVD).

Google addressed this vulnerability in the Android Security Bulletin for June 2021. Users should update their Android devices to the latest available security patch level to mitigate this vulnerability (Android Bulletin).