Android Agent Application Vulnerability: Unauthorized Access to Content-Provider and Sensitive Settings Modification

Android Agent Application Vulnerability: Unauthorized Access to Content-Provider and Sensitive Settings Modification

CVE-2023-41960 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

The vulnerability allows an unprivileged(untrusted) third-party application to interact with a content-provider unsafely exposed by the Android Agent application, potentially modifying sensitive settings of the Android Client application itself.

Learn more about our Cis Benchmark Audit For Google Android.