CVE-2019-2041

Name of the Vulnerable Software and Affected Versions Android versions 8.1 through 9

Description The issue is related to the configuration of NFC modules on certain devices, where an insecure default value may cause a failure to distinguish individual devices. This could lead to a local escalation of privilege, with no additional execution privileges needed. User interaction is required for exploitation.

Recommendations For Android versions 8.1 through 9, update the NFC module configuration to use a secure default value to prevent the failure to distinguish individual devices and mitigate the risk of local privilege escalation.