Android/data/CVE-2021-39795-dir/ Bypassed by MediaProvider CVE-2021-39795-file external Second Fix Patch not applied. Please Apply second Fix Patch!! com.android.providers.media.util.FileUtils isDataOrObbPath com.android.providers.media.module /storage/emulated/0/Android/data/foo Device vulnerable to b/201667614! Any app with MANAGE_EXTERNAL_STORAGE permission can write into other apps private external directory.