CVE-2019-9438

Name of the Vulnerable Software and Affected Versions Android versions Android-10

Description The issue is related to a confused deputy in the Package Manager service, which could lead to the local disclosure of information about installed packages for other users. No additional execution privileges are needed for exploitation, and user interaction is not required.

Recommendations For Android version Android-10, consider restricting access to the Package Manager service to minimize the risk of information disclosure until a patch is available.