CVE-2019-9407

Name of the Vulnerable Software and Affected Versions Android versions Android-10

Description The issue concerns a permissions bypass in the notification management of the service manager. This could lead to local escalation of privilege by preventing user notification, with no additional execution privileges needed. Notably, user interaction is not required for exploitation.

Recommendations For Android version Android-10, consider restricting access to the notification management feature of the service manager until a patch is available. As a temporary workaround, review and adjust the notification settings to minimize the risk of exploitation.