VDB
ASB-A-162738636
ASB-A-162738636
PUBLISHED
CVSS 6.900000095367432 MEDIUM
In several functions of GlobalScreenshot.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of the user's contacts with User execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | frameworks/base | 8.0:0, 8.0, 8.1:0 |
Timeline
- Jan 1, 2021 CVE Published
- May 15, 2026 CVE Updated