CVE-2019-9272

Name of the Vulnerable Software and Affected Versions Android versions Android-10

Description There is a possible leak of WiFi state due to a permissions bypass in WiFi, which could lead to a local information disclosure. This disclosure could be used to determine the device location without needing any additional execution privileges. User interaction is not required for exploitation.

Recommendations For Android version Android-10, consider restricting access to WiFi state information to minimize the risk of exploitation until a patch is available. As a temporary workaround, disabling the use of WiFi state information could help mitigate the issue.