Dawn Security Lab

**Name of the Vulnerable Software and Affected Versions** ApkInstaller versions prior to SMR MAR-2022 Release **Description** The issue is related to improper access control in the dynamic receiver of ApkInstaller, allowing unauthorized attackers to execute arbitrary activities without proper permission. **Recommendations** For versions prior to SMR MAR-2022 Release, update to the SMR MAR-2022 Release or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Gear S Plugin versions prior to 2.2.05.20122441 Description: The issue allows untrusted applications to access information about connected Bluetooth devices. Recommendations: For versions prior to 2.2.05.20122441, update to version 2.2.05.20122441 or later to resolve the issue.