CVE-2023-40081
The CVE-2023-40081 entry describes an information-disclosure flaw in Android: in loadMediaDataInBgForResumption inside MediaDataManager.kt, a confused-deputy allows viewing another user’s images (no extra execution privileges, no user interaction required). Several connected advisories confirm th...