Google · Google Chrome · CVE-2019-5767
**Name of the Vulnerable Software and Affected Versions**
Google Chrome on Android versions prior to 72.0.3626.81
**Description**
The issue concerns insufficient protection of permission UI in WebAPKs, allowing an attacker to access privacy and security-sensitive web APIs. This can occur if the user is convinced to install a malicious application. The exploitation enables a remote attacker to gain unauthorized access to information using a specially crafted APK.
**Recommendations**
For versions prior to 72.0.3626.81, update to version 72.0.3626.81 or later to resolve the issue.