ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: OPPO
Published: 2021-12-27T18:48:24
Updated: 2024-08-03T19:05:54.805Z
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23244
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-12-27T19:15:08.107
Modified: 2024-11-21T05:51:26.577
Link: CVE-2021-23244
Redhat
No data.