Local Privilege Escalation Flaw in Android Messaging App by Google
CVE-2018-9461

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 18 January 2025

Summary

A vulnerability exists in the ShareIntentActivity of the Android Messaging App, which may allow an attacker to read files through a race condition. This issue enables local escalation of privileges without requiring additional execution permissions or user interaction, thereby potentially compromising sensitive user data.

References

https://source.android.com/security/bulletin/pixel/2018-0...

Timeline

Vulnerability published
Jan 18, 2025