CVE-2020-28055
CVE-2020-28055 affects TCL Android Smart TV series V8-R851T02-LF1 V295 and earlier, and V8-T658T01-LF1 V373 and earlier. A local, unprivileged attacker can read/write to /data/vendor/tcl, /data/vendor/upgrade, and /var/TerminalManager, enabling fake system upgrades by writing to /data/vendor/upgr...