The framework service handles pendingIntent incorrectly, allowing a malicious application with certain privileges to perform privileged actions.
vivo frame_service