Improper Access Control Vulnerability in MyFiles Allows Local Attackers to Write Files via Implicit Intent

Improper Access Control Vulnerability in MyFiles Allows Local Attackers to Write Files via Implicit Intent

CVE-2023-21445 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Improper access control vulnerability in MyFiles prior to versions 12.2.09 in Android R(11), 13.1.03.501 in Android S(12) and 14.1.00.422 in Android T(13) allows local attacker to write file with MyFiles privilege via implicit intent.

Learn more about our Cis Benchmark Audit For Google Android.