CVE-2021-0438
CVE-2021-0438 describes a tapjacking/overlay risk in Android where an incorrect FLAG_OBSCURED value in InputDispatcher.cpp and WindowManagerService.java can enable local elevation of privilege with user interaction. The description covers affected Android versions (8.1, 9, 10) and notes exploitat...