CVE-2021-23244
N/A
N/A
Summary
ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | OPPO Android Phone | OPPO Mobile phones with ColorOS 11 version | affected |
Weaknesses
- Elevation of privilege
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.