Unprotected Activity in AppLock prior to SMR Mar-2022 Release 1 allows attacker to change the list of locked app without authentication.
The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Android | 10.0 (including) | 10.0 (including) | |
Android | 11.0 (including) | 11.0 (including) | |
Android | 12.0 (including) | 12.0 (including) |
The attacks and consequences of improperly exporting a component may depend on the exported component: