CVE-2024-31310

Name of the Vulnerable Software and Affected Versions Android versions (affected versions not specified)

Description The issue is related to improper input validation in the AutofillManagerServiceImpl.java, specifically in the newServiceInfoLocked method. This could allow an enabled Autofill service app to be hidden in the Autofill service settings, potentially leading to local escalation of privilege without requiring additional execution privileges. User interaction is necessary for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.