VDB
ASB-A-238298970
ASB-A-238298970
PUBLISHED
In isToggleable of SecureNfcEnabler.java and SecureNfcPreferenceController.java, there is a possible way to enable NFC from a secondary account due to a permissions bypass. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | packages/apps/Settings | 13-next, 11:0, 11 |
Timeline
- Apr 1, 2023 CVE Published
- May 15, 2026 CVE Updated