A high-severity vulnerability in the MediaProjectionPermissionActivity component could allow a malicious application to bypass user consent prompts and capture screen content.

A flaw exists in the onCreate function of the MediaProjectionPermissionActivity. This component is responsible for managing user permissions for screen recording. The vulnerability likely involves improper initialization or state handling that a malicious application could exploit to gain screen capture capabilities without explicit user approval.

With a CVSS score of 7.8, this vulnerability poses a serious risk to data confidentiality. A successful exploit would allow an attacker to silently record all activity on a user's screen, capturing sensitive information such as login credentials, private messages, and confidential documents. This could lead to account takeovers, financial fraud, and significant data breaches.

Immediate Action: Immediately apply the security updates from the vendor to correct the permission-handling flaw.

Proactive Monitoring: Monitor for unexpected screen recording or media projection activity on endpoints. Endpoint security solutions may be able to detect applications attempting to use screen capture APIs without proper permissions.

Compensating Controls: Restrict the installation of applications from untrusted sources. Educate users about the dangers of granting unnecessary permissions to applications, particularly for screen sharing or accessibility services.

Public Exploit Available: false

This is a critical privacy and security vulnerability requiring immediate remediation. The vendor patch must be deployed urgently across all affected systems to prevent unauthorized screen capture and protect sensitive user data.