A vulnerability was found in Google Android 14/15. It has been declared as critical. Affected is the function setUserDisclaimerAcknowledged of the file CarDevicePolicyService.java. Executing a manipulation can lead to permission issues.

This vulnerability appears as CVE-2025-26418. The attack requires local access. There is no available exploit.