StrandHogg Vulnerability can enter any Android OS and can makes it easy for a malicious app to ask permission while acting as a legit app. Attack is a "request permission method,"
Read this post on mono-live.com