CVE-2023-40109

CVE-2023-40109 affects the Android USB configuration path: createFromParcel in UsbConfiguration.java. The issue enables a background activity launch via a permissions bypass, causing local privilege escalation with no extra execution privileges, requiring user interaction for exploitation. Report...