CVE-2023-35677

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The issue is related to a missing permission check in the onCreate method of DeviceAdminAdd.java, which could allow a device admin to be forcibly added. This could lead to local denial of service, resulting in a factory reset or continuous locking, without requiring additional execution privileges. User interaction is not needed for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.