ASB-A-327645387 — Vulnetix

ASB-A-327645387 PUBLISHED

In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected Products

Vendor	Product	Versions
platform	packages/modules/IntentResolver	15-next:0, 15-next, 14:0
platform	frameworks/base	12, 12L:0, 12L

Timeline

Oct 1, 2024 CVE Published
May 15, 2026 CVE Updated

References

https://source.android.com/security/bulletin/2024-10-01 advisory
https://android.googlesource.com/platform/packages/modules/IntentResolver/+/ccd29124d0d2276a3071c0418c14dec188cd3727 patch

Open in Interactive Console →