CVE-2023-21249
The vulnerability is in Google Android's Framework, specifically OneTimePermissionUserManager.java, where a permissions bypass can cause a oneātime permission to be retained. This could enable local elevation of privilege with User execution privileges required and no user interaction. Public tec...