CVE-2019-15369

Name of the Vulnerable Software and Affected Versions Lava Z61 Turbo Android device with a build fingerprint of LAVA/Z61 Turbo/Z61 Turbo:8.1.0/O11019/1536917928:user/release-keys

Description The issue concerns a pre-installed app with a package name of com.mediatek.wfo.impl that allows any app co-located on the device to modify a system property through an exported interface without proper authorization.

Recommendations For the Lava Z61 Turbo Android device, consider restricting access to the com.mediatek.wfo.impl app to minimize the risk of exploitation until a patch is available.