Google Play Protect version 22.4.25 suffers from a detection bypass vulnerability.
0113c50a15a2e4d4e1a661ce08910be7# Exploit Title: Google Play Protect 22.4.25 - Detection Bypass
# Date: 2022-02-14
# Exploit Author: Aryan Chehreghani
# Contact: [email protected]
# Vendor Homepage: https://play.google.com
# Version: 22.4.25 (Possibly all versions)
# Tested on: Android 5.1.1
# [ About - Google Play Protect ]:
#Google Play Protect is Google's built-in malware protection for Android,
#Backed by the strength of Google's machine learning algorithms, it is always improving in real time,
#Google Play Protect continuously works to keep your device, data and apps safe,
#It automatically scans your device and makes sure that you have the latest in mobile security, so you can rest easy,
#All Android apps undergo rigorous security testing before appearing in the Google Play Store,
#Play Protect scans billions of apps daily to make sure that everything remains spot on.
# [ Steps ]:
# 1.Build a Android Payload
# 2.Install the Payload ( The google play protect has detected the payload as unsafe )
# 3.Clear the payload
# 4.With Using the Android editor program change the (Target Sdk to '39')
# 5.Install Payload again ( The google play protect will not be able to detect the Payload as unsafe )
# [ PoC - Video ]:
https://drive.google.com/file/d/1KiTalfk7b8VZPJVsCF_EoLsTQob5GVA7/view?usp=sharing