In the app zygote SE Policy, there is a possible permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "fixes": [ "https://android.googlesource.com/platform/system/sepolicy/+/4c386e10c98b63cdb07bd940287e2cf1a63526c0" ], "spl": "2020-09-01", "severity": "High", "types": [ "ID" ] }