CVE-2019-9380

Name of the Vulnerable Software and Affected Versions Android versions Android-10

Description The issue is related to a possible spoofing vulnerability in the settings UI due to a missing permission check. This could lead to a user mistakenly changing permission settings without needing additional execution privileges. User interaction is required for exploitation.

Recommendations For Android version Android-10, consider restricting access to the settings UI to minimize the risk of exploitation until a patch is available. As a temporary workaround, ensure that users are aware of the potential for spoofing and verify any changes to permission settings.