CVE-2021-39694

Name of the Vulnerable Software and Affected Versions Android versions Android-12

Description The issue is related to a permissions bypass in the RoleParser.java parse, allowing default apps to obtain permissions that were explicitly denied by the user. This could lead to a local escalation of privilege without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android version Android-12, apply the fix provided by the Android security update to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.