Google Android is a Linux-based open source operating system from Google, Inc. The vulnerability arises due to a possible bypass of user interaction requirements in onCreate of AllowBindAppWidgetActivity.java due to unclear UI. An attacker could exploit the vulnerability to cause a local privilege escalation.