Custom permission misuse vulnerability in SystemUI prior to SMR Sep-2022 Release 1 allows attacker to use some protected functions with SystemUI privilege.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Android | 10.0 (including) | 10.0 (including) | |
Android | 11.0 (including) | 11.0 (including) | |
Android | 12.0 (including) | 12.0 (including) |