8.4
CVE-2026-0021 - Local Privilege Escalation via Cross-user Permission Bypass
In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
8.4
CVE-2026-0020 - Android Consent Dialogue Bypass Allows Local Privilege Escalation
In parsePermissionGroup of ParsedPermissionUtils.java, there is a possible way to bypass a consent dialog to obtain permissions due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatiβ¦
7.7
CVE-2026-0017 - BiometricService Logic Error Allows Unauthorized Fingerprint Unlock
In onChange of BiometricService.java, there is a possible way to enable fingerprint unlock due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
6.2
CVE-2026-0015 - Local Denial of Service via Improper Input Validation in AppOpsService
In multiple locations of AppOpsService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
6.2
CVE-2026-0014 - AppOpsService Input Validation Denial of Service
In isPackageNullOrSystem of AppOpsService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
8.4
CVE-2026-0013 - Local Privilege Escalation via Arbitrary Activity Launch in Android PickActivity
In setupLayout of PickActivity.java, there is a possible way to start any activity as a DocumentsUI app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
6.2
CVE-2026-0012 -
In setHideSensitive of ExpandableNotificationRow.java, there is a possible contact name leak due due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
8.4
CVE-2026-0011 - Logic Error in Settings Enabling Local Privilege Escalation
In enableSystemPackageLPw of Settings.java, there is a possible way to prevent location access from working due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
8.4
CVE-2026-0010 - OutβofβBounds Write in Android DRM Service Enables Local Privilege Escalation
In onTransact of IDrmManagerService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
8.4
CVE-2026-0008 - Confused Deputy Privilege Escalation in Android
In multiple locations, there is a possible privilege escalation due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.