CVE-2019-15334

Name of the Vulnerable Software and Affected Versions Lava Iris 88 Go Android device with a build fingerprint of LAVA/iris88 go/iris88 go:8.1.0/O11019/1538188945:user/release-keys com.android.lava.powersave app version v4.0.27

Description The issue concerns a pre-installed app that allows any co-located app to disable and enable Wi-Fi without the necessary access permission. This is possible through an exported interface.

Recommendations For the Lava Iris 88 Go Android device, consider disabling the com.android.lava.powersave app until a patch is available. Restrict access to the exported interface of the com.android.lava.powersave app to minimize the risk of exploitation.