CVE-2026-28577 | Google Android 14/15/16/16-qpr2 WindowManagerService.java addWindow ui layer

Inserito da Angelo Barbosa | Giu 2, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Google Android 14/15/16/16-qpr2. The affected element is the function addWindow of the file WindowManagerService.java. This manipulation causes improper restriction of rendered ui layers.

The identification of this vulnerability is CVE-2026-28577. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2026-28577 | Google Android 14/15/16/16-qpr2 WindowManagerService.java addWindow ui layer

Post correlati

CVE-2024-43024 | RWS MultiTrans up to 7.0.23324.2 cross site scripting

CVE-2024-0286 | PHPGurukul Hospital Management System 1.0 Contact Form index.php#contact_us Name/Email/Message cross site scripting

CVE-2024-5853 | Sirv Plugin up to 7.2.6 on WordPress unrestricted upload

CVE-2024-44205 | Apple macOS log file