CVE-2023-21292
CVE-2023-21292 affects Android’s ActivityManagerService.openContentUri, where a confused deputy could allow a third-party app to access restricted files and disclose information locally without extra execution privileges and with no user interaction. The vulnerability is described in Android’s CV...