CVE-2026-0078

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 01, 2026

Vendor unknown

Description

In setGlobalProxy of DevicePolicyManagerService.java, there is a possible desync in persistence due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

https://source.android.com/docs/security/bulletin/2026/2026-06-01