ASB-A-299633613 — Vulnetix

ASB-A-299633613 PUBLISHED

In multiple functions of WifiScanModeActivity.java, there is a possible way to bypass a device config restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected Products

Vendor	Product	Versions
platform	packages/apps/Settings	16-qpr2-next:0, 16-qpr2-next, 13:0

Timeline

Dec 1, 2025 CVE Published
May 8, 2026 CVE Updated

References

https://source.android.com/security/bulletin/2025-12-01 advisory
https://android.googlesource.com/platform/packages/apps/Settings/+/7a792e0b8f68bc4aeb939af703790fd76b51ccbd patch

Open in Interactive Console →