CVE-2018-14988
The CVE-2018-14988 entry describes an issue in MXQ TV Box 4.4.2 where an exported Android framework broadcast receiver component (com.android.server.SystemRestoreReceiver) is accessible without permissions and can write to /cache/recovery/command to trigger boot into recovery mode. This can forma...