CVE-2019-15367

Name of the Vulnerable Software and Affected Versions Haier P10 Android device with a build fingerprint of Haier/P10/P10:8.1.0/O11019/1532662449:user/release-keys

Description The issue concerns a pre-installed app with a package name of com.mediatek.wfo.impl that allows any app co-located on the device to modify a system property through an exported interface without proper authorization. This could potentially lead to unauthorized access and modifications to system settings.

Recommendations For the Haier P10 Android device with the specified build fingerprint, consider disabling the com.mediatek.wfo.impl app until a patch is available to prevent unauthorized modification of system properties. At the moment, there is no information about a newer version that contains a fix for this vulnerability.