VDB

ASB-A-243378132

ASB-A-243378132 PUBLISHED

In onPackageRemoved of AccessibilityManagerService.java, there is a possibility to automatically grant accessibility services due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

Affected Products

VendorProductVersions
platformframeworks/base10:0, 10, 11:0

Timeline

  • Jan 1, 2023 CVE Published
  • May 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›