CVE-2021-0315

Name of the Vulnerable Software and Affected Versions: Android versions 8.0 through 11

Description: The issue concerns a tapjacking/overlay attack in the GrantCredentialsPermissionActivity.java file. This could allow an app to gain access to an account, potentially leading to local escalation of privilege. User interaction is required for exploitation.

Recommendations: For Android versions 8.0 through 11, consider restricting access to sensitive account information until a patch is available. As a temporary workaround, users should be cautious when granting app permissions to avoid potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.