CVE-2018-9375

Name of the Vulnerable Software and Affected Versions UserDictionaryProvider (affected versions not specified)

Description The issue is related to multiple functions in UserDictionaryProvider.java, where a confused subordinate could potentially allow adding and removing words from the user dictionary. This could lead to a local privilege escalation without requiring additional execution permissions. No user interaction is needed for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.