CVE-2017-13286
CVE-2017-13286 affects Android 8.0 and 8.1, where in OutputConfiguration.java’s writeToParcel/readFromParcel a mismatched serialization permits a local permission bypass, enabling a user to start an activity with system privileges without extra execution privileges. No exploit details are provide...