CVE-2021-0523

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-11

Description: The issue is related to a tapjacking/overlay attack in the WifiScanModeActivity.java file, which could enable Wi-Fi scanning without user consent. This may lead to local escalation of privilege, requiring User execution privileges. User interaction is necessary for exploitation.

Recommendations: For Android versions Android-10 through Android-11, consider restricting access to the WifiScanModeActivity to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.