Google Android is a Linux-based open source operating system from Google, a US company. The vulnerability stems from a missing permission check in onbind in ShannonRcsService.java. An attacker could use this vulnerability to obtain sensitive information.