Untrusted Applications Exploit Dangerous Permissions in PackageManager Vulnerability

Untrusted Applications Exploit Dangerous Permissions in PackageManager Vulnerability

CVE-2021-25428 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances.

Learn more about our User Device Pen Test.