Vulnerability in Pre-Installed App Allows for Programmatic Factory Reset on TCL 20XE Android Device
CVE-2023-38292
Currently unrated
What is CVE-2023-38292?
A local app vulnerability exists in certain software builds of the TCL 20XE Android device, where a pre-installed application, identified by the package name com.tct.gcs.hiddenmenuproxy, exhibits inadequate access controls. This flaw allows malicious third-party applications to initiate a factory reset without requiring any permissions or special privileges. The vulnerability is triggered by these apps sending a broadcast intent to the application's exported receiver component, enabling unauthorized factory resets with minimal user interaction. Affected software builds are specifically those with versionCode='2' and versionName='v11.0.1.0.0201.0'.