Impact
The vulnerability resides in CarrierConfigLoader.overrideConfig, where a permissions bypass allows an application to evade the UID verification. This flaw, an instance of insufficient privilege checks and improper access control (CWE-862), enables a local attacker to gain higher privileges without needing separate execution rights or user interaction. The flaw effectively changes the security context of a calling component, allowing it to perform privileged operations.
Affected Systems
Android devices that include the vulnerable CarrierConfigLoader component are affected. The specific Android releases are not enumerated in the data, so any device running an unpatched version of CarrierConfigLoader could be at risk.
Risk and Exploitability
The CVSS score of 7.8 and the EPSS score below 1% indicate a high‑severity flaw with currently low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog. However, because the attack does not require user interaction and needs only local execution, the risk to individual devices is significant. An attacker with local access could exploit the flaw to elevate privileges and compromise system integrity. The attack vector is local; no remote exploitation is implied.
OpenCVE Enrichment