GHSA-q444-x9j9-66r8MediumCVSS 6.2
In InputInterceptor of Letterbox.java, there is a possible way to trick a user into accepting a...
🔗 CVE IDs covered (1)
📋 Description
In InputInterceptor of Letterbox.java, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.