CVE-2018-9432

Name of the Vulnerable Software and Affected Versions BluetoothPermissionActivity (affected versions not specified)

Description The issue is related to a possible permissions bypass in the createPhonebookDialogView and createMapDialogView functions of BluetoothPermissionActivity.java. This could lead to local escalation of privilege due to hiding and bypassing the user's ability to disable access to contacts. No additional execution privileges are needed, but user interaction is required for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.