CVE-2026-28573
- EPSS 0.14%
- Veröffentlicht 18.06.2026 06:29:35
- Zuletzt bearbeitet 22.06.2026 18:16:35
In AndroidManifest.xml, there is a possible persistent denial of service due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
- EPSS 0.16%
- Veröffentlicht 17.06.2026 07:24:27
- Zuletzt bearbeitet 17.06.2026 07:24:50
In setAllowedCarriers of PhoneInterfaceManager.java, there is a possible way to disable carrier restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User inter...
- EPSS 0.12%
- Veröffentlicht 17.06.2026 07:21:45
- Zuletzt bearbeitet 17.06.2026 07:21:45
In MmsSmsProvider of MmsSmsProvider.java, there is a possible way to retrieve sensitive information due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is...
- EPSS 0.12%
- Veröffentlicht 17.06.2026 07:17:32
- Zuletzt bearbeitet 17.06.2026 07:17:32
In Telecomm, there is a possible way to initiate an unauthorized phone call due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- EPSS 0.12%
- Veröffentlicht 17.06.2026 07:15:28
- Zuletzt bearbeitet 17.06.2026 07:15:28
In Nfc::eventCallback() of Nfc.h, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- EPSS 0.17%
- Veröffentlicht 17.06.2026 07:13:55
- Zuletzt bearbeitet 17.06.2026 07:13:55
In tryStartActivity of NfcDispatcher.java, there is a possible automatic special app access permission assignment due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User ...
- EPSS 0.15%
- Veröffentlicht 17.06.2026 07:12:15
- Zuletzt bearbeitet 17.06.2026 07:12:15
In NFC, there is a possible way to spoof an NFC event due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- EPSS 0.16%
- Veröffentlicht 17.06.2026 07:09:34
- Zuletzt bearbeitet 17.06.2026 07:09:34
In SettingsLib, there is a possible missing permission check due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- EPSS 0.13%
- Veröffentlicht 17.06.2026 07:02:33
- Zuletzt bearbeitet 17.06.2026 07:02:33
In PackageInstaller.Session#transfer of frameworks/base/services/core/java/com/android/server/pm/PackageInstallerSession.java, there is a possible memory exhaustion attack due to a logic error in the code. This could lead to local denial of service w...
- EPSS 0.12%
- Veröffentlicht 17.06.2026 06:59:37
- Zuletzt bearbeitet 17.06.2026 06:59:37
In multiple places, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.