Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android Play Core Library versions vulnerable to CVE-2020-8913. Vulnerable apps like OkCupid, MS Edge, Xrecorder, Yango Pro, and PowerDirector are still vulnerable. Vulnerability is a local, arbitrary code execution vulnerability that resides exists in the SplitCompat.install endpoint in Androids Play.install. The vulnerability is rated 8.8 out of 10.0.”]
Source: https://securityaffairs.co/wordpress/111911/mobile-2/android-cve-2020-8913-flaw.html