CVE-2019-2132

Name of the Vulnerable Software and Affected Versions Android versions 7.0 through 9

Description A security issue exists where a malicious application can overlay the VPN dialog, potentially leading to local escalation of privilege without requiring additional execution privileges. User interaction is necessary for exploitation.

Recommendations For Android versions 7.0 through 9, consider restricting access to sensitive features until a patch is available. As a temporary workaround, users should be cautious when interacting with VPN dialogs to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.