CVE-2019-15436
The CVE pertains to Samsung A8+ (jackpot2ltexx/jackpot2lte:8.0.0 Release) where a pre-installed component in com.samsung.android.themecenter can be invoked by other pre-installed apps to install software. The surface requires signatureOrSystem permissions and is exploitable by any pre-installed a...