VDB
ASB-A-378902342
ASB-A-378902342
PUBLISHED
In isSafeIntent of AccountTypePreferenceLoader.java, there is a possible way to bypass an intent type check due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | packages/apps/Settings | 16-next, 15:0, 16 |
Timeline
- Sep 1, 2025 CVE Published
- May 15, 2026 CVE Updated