CVE-2021-0446

Name of the Vulnerable Software and Affected Versions: Android versions Android-11

Description: The issue allows for a tapjacking/overlay attack in ImportVCardActivity, which could lead to local escalation of privilege. This requires user interaction for exploitation and needs User execution privileges.

Recommendations: For Android version Android-11, consider restricting access to the ImportVCardActivity until a patch is available to prevent potential exploitation. As a temporary workaround, users should be cautious of suspicious overlays or prompts that may be part of a tapjacking attack.