PT-2024-40049 · Unknown · Shared Preferences Android

Name of the Vulnerable Software and Affected Versions: shared preferences android versions prior to 2.3.4 Description: The issue arises from the serialization and deserialization of special string prefixes used to store data types that are not natively representable by the available storage...

shared_preferences_android vulnerability

Due to some data types not being natively representable for the available storage options, sharedpreferencesandroid serializes and deserializes special string prefixes to store these unrepresentable data types. This allows arbitrary classes to be deserialized leading to arbitrary code execution. ...