CVE-2025-26440

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The vulnerability resides within the Android operating system’s Framework component, stemming from a buffer copy operation lacking input size validation. Exploitation may allow an attacker to elevate their privileges. Additionally, multiple functions within CameraService.cpp may allow unauthorized camera access due to a permissions bypass, potentially leading to local privilege escalation without requiring additional execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.