Privilege Escalation via Package Name Manipulation in Game Optimizing Service

Privilege Escalation via Package Name Manipulation in Game Optimizing Service

CVE-2022-36833 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper Privilege Management vulnerability in Game Optimizing Service prior to versions 3.3.04.0 in Android 10, and 3.5.04.8 in Android 11 and above allows local attacker to execute hidden function for developer by changing package name.

Learn more about our Cis Benchmark Audit For Google Android.