[X] I have investigated the app and created a report
Vulnerability report
CVE-2019-15340
Package name
com.huaqin.factory
Package label
FactoryKit Test
Affected versions
Requires investigation (see below). Reported version: QL1715_201805292006 (1)
Removal
Remove
Additional context
It “allows any app co-located on the device to programmatically disable and enable Wi-Fi, Bluetooth, and GPS without the corresponding access permission through an exported interface.” However, the name of the exported component is not mentioned and no PoC is available.
Please check before submitting an issue
Vulnerability report
CVE-2019-15340
Package name
com.huaqin.factory
Package label
FactoryKit Test
Affected versions
Requires investigation (see below). Reported version: QL1715_201805292006 (1)
Removal
Remove
Additional context
It “allows any app co-located on the device to programmatically disable and enable Wi-Fi, Bluetooth, and GPS without the corresponding access permission through an exported interface.” However, the name of the exported component is not mentioned and no PoC is available.