Bypassing getRecentTasks Restrictions and Discovering Foreground Application Name in Android

Bypassing getRecentTasks Restrictions and Discovering Foreground Application Name in Android

CVE-2015-3833 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The getRunningAppProcesses function in services/core/java/com/android/server/am/ActivityManagerService.java in Android before 5.1.1 LMY48I allows attackers to bypass intended getRecentTasks restrictions and discover the name of the foreground application via a crafted application, aka internal bug 20034603.

Learn more about our Cis Benchmark Audit For Google Android.