Improper Permissions Check in LockPatternUtils Allows Local Privilege Escalation

Improper Permissions Check in LockPatternUtils Allows Local Privilege Escalation

CVE-2019-9384 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

In LockPatternUtils, there is a possible escalation of privilege due to an improper permissions check. This could lead to local bypass of the Lockguard with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120568007

Learn more about our Cis Benchmark Audit For Google Android.