AndroidManifest.xml Incorrect Default Permissions Vulnerability

Summary

In the permission declaration for.com.google.android.providers.gsf.permission. WRITE_GSERVICES in AndroidManifest.xml, there is a possible permissions bypass. 

Credit:

The information has been provided by Vendor

The original article can be found at:https://source.android.com/security/bulletin/2020-07-01


Details

This could lead to local escalation of privilege with System execution privileges needed.

 

Vulnerable Systems:

AndroidManifest.xml

 

CVE Information:

CVE-2020-0122

 

Disclosure Timeline:
Published Date:7/17/2020

Categories: FeaturedNews