CVE-2020-0394
CVE-2020-0394 describes a tapjacking vulnerability in Android’s BluetoothPairingDialog.java, triggered in onCreate, due to an insecure default value. Affects Android 8.0–11; impact is local elevation of privilege with untrusted devices potentially accessing contact lists, requiring user interacti...