Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | frameworks/base | 14-next:0, 12:0, 12 |
Timeline
- Jan 1, 2024 CVE Published
- May 15, 2026 CVE Updated
In convertToComponentName of DreamService.java, there is a possible way to launch arbitrary protected activities due to intent redirection. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.
| Vendor | Product | Versions |
|---|---|---|
| platform | frameworks/base | 14-next:0, 12:0, 12 |