VYPR

Magisk App

by Magisk

CVEs (1)

  • CVE-2024-48336HigNov 4, 2024
    risk 0.48cvss 8.4epss 0.01

    The install() function of ProviderInstaller.java in Magisk App before canary version 27007 does not verify the GMS app before loading it, which allows a local untrusted app with no additional privileges to silently execute arbitrary code in the Magisk app and escalate privileges…