CVE-2019-2098
CVE-2019-2098 affects Android 7.0–9 and is tied to a missing permissions check in NotificationManagerService.java areNotificationsEnabledForPackage, enabling local elevation of privilege with no additional privileges and no user interaction required. The issue impacts Android’s System/notificatio...