CVE-2025-26435

Name of the Vulnerable Software and Affected Versions ContentProtectionTogglePreferenceController.java (affected versions not specified)

Description A logic error in the updateState function within ContentProtectionTogglePreferenceController.java may allow a secondary user to disable the deceptive app scanning setting configured by the primary user. This could result in local escalation of privilege without requiring additional execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.