CVE-2021-0691

Name of the Vulnerable Software and Affected Versions Android versions Android-11

Description The issue is related to an overly-permissive SELinux policy configured in system app.te, allowing system app to potentially gain code execution in other processes. This could lead to local escalation of privilege, with System execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android version Android-11, update the SELinux policy to a version that includes the necessary restrictions to prevent system app from gaining code execution in other processes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.