CVE-2021-0537

Name of the Vulnerable Software and Affected Versions: Android versions Android-11

Description: The issue is related to a tapjacking/overlay attack in the WiFiInstaller.java file, which could allow the installation of a malicious Hotspot 2.0 configuration. This might lead to local escalation of privilege, requiring User execution privileges. User interaction is necessary for exploitation.

Recommendations: For Android version Android-11, consider restricting access to the WiFiInstaller.java file to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the WiFiInstaller functionality until the issue is resolved.