CVE-2026-28575 | Google Android 17 PackageInstallerSession.java PackageInstaller denial of service

Inserito da Angelo Barbosa | Giu 17, 2026 | CVE

A vulnerability, which was classified as critical, was found in Google Android 17. Affected by this issue is the function PackageInstaller of the file frameworks/base/services/core/java/com/android/server/pm/PackageInstallerSession.java. The manipulation results in denial of service.

This vulnerability is identified as CVE-2026-28575. The attack is only possible with local access. There is not any exploit available.

CVE-2026-28575 | Google Android 17 PackageInstallerSession.java PackageInstaller denial of service

Post correlati

CVE-2024-56743 | Linux Kernel up to 6.12.1 nfs_common Privilege Escalation

CVE-2024-1754 | NPS computy Plugin up to 2.7.5 on WordPress Setting cross site scripting

CVE-2023-52349 | Unisoc S8000 Ril Service out-of-bounds write

CVE-2025-12696 | HelloLeads CRM Form Shortcode Plugin up to 1.0 on WordPress cross-site request forgery