Mobile Preference Restriction Evasion: Local Privilege Escalation via Permission Bypass

Mobile Preference Restriction Evasion: Local Privilege Escalation via Permission Bypass

CVE-2023-21390 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

In Sim, there is a possible way to evade mobile preference restrictions due to a permission bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Learn more about our Mobile App Penetration Testing.