Improper Knox ID validation logic in notification framework prior to SMR Jun-2023 Release 1 allows local attackers to read work profile notifications without proper access permission. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Privilege Escalation
Android
NVD
CVSS 3.1
3.3
EPSS
0.2%