CVE-2024-23706

Name of the Vulnerable Software and Affected Versions Android 14

Description The issue is related to an improper input validation that could lead to a bypass of health data permissions. This could result in a local escalation of privilege with no additional execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android 14, apply the security updates released by Google to patch the critical bug. As a temporary workaround, consider restricting access to health data permissions until the issue is resolved.