CVE-2016-6716
CVE-2016-6716 affects the AOSP Launcher on Android 7.0 (before 2016-11-01). The issue allows a local malicious app to create shortcuts that run with elevated privileges without user consent, constituting a local privilege-escalation by bypassing user interaction. Root cause is a bypass of prompts...