CVE-2023-44121

Name of the Vulnerable Software and Affected Versions LG ThinQ Service (affected versions not specified)

Description The issue is an intent redirection in the LG ThinQ Service, specifically in the "com/lge/lms/things/ui/notification/NotificationManager.java" file. This could be exploited by a third-party app installed on an LG device by sending a broadcast with the action "com.lge.lms.things.notification.ACTION". The severity of this issue is heightened because LG ThinQ Service is a system app, which could lead to accessing arbitrary not exported activities of all apps.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.