CVE-2023-21035

Name of the Vulnerable Software and Affected Versions Android versions Android-13

Description The issue is related to a permissions bypass in multiple functions of BackupHelper.java. This could allow an app to obtain permissions previously granted to another app with the same package name, leading to local escalation of privilege without needing additional execution privileges. User interaction is not required for exploitation.

Recommendations For Android version Android-13, update to a version that includes the fix for this issue, as specified in the Android security bulletin. At the moment, there is no information about a newer version that contains a fix for this vulnerability.