A vulnerability labeled as critical has been found in Google Android 16/16-qpr2. This vulnerability affects the function
updateProvidersWhenServiceRemoved of the file CredentialManagerService.java. Such manipulation leads to permission issues.
This vulnerability is uniquely identified as CVE-2026-0016. Local access is required to approach this attack. No exploit exists.
