CVE-2026-28586
published 2026-06-01CVE-2026-28586: In multiple functions of AppOpsService.java, there is a possible missing permission check due to a permissions bypass. This could lead to local information…
low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
In multiple functions of AppOpsService.java, there is a possible missing permission check due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — |