An improper SELinux policy prior to SMR APR-2021 Release 1 allows local malicious users to access AP information without proper permissions via untrusted applications.