A source code flaw in the Google Play store platform could enable attackers to perform remote code execution on several prominent apps. The vulnerability, tracked as CVE-2020-8913, is a code execution flaw in Android’s Play Core Library, which permits apps to interact with Google Play Services from within the application itself. Vulnerable apps include messaging app Viber, Cisco Teams, Microsoft Edge and utilities Xrecorder and PowerDirector. Google considers the vulnerability “highly dangerous,” a new report by security firm Check Point Research finds.”]
Source: https://www.cuinfosecurity.com/google-play-source-code-flaw-makes-apps-vulnerable-a-15526