VDB

ASB-A-377888957

ASB-A-377888957 PUBLISHED

In multiple locations, there is a possible bypass of a file path filter designed to prevent access to sensitive directories due to incorrect unicode normalization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

Affected Products

VendorProductVersions
platformpackages/providers/MediaProvider16-qpr2-next:0, 16-qpr2-next, 15:0

Timeline

  • Mar 1, 2026 CVE Published
  • May 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›