CVE-2026-28581

CVSS v3.1

4.0

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions The product name cannot be determined (affected versions not specified)

Description A logic error in the fixInitiatingUserIfNecessary() function of CallIntentProcessor.java allows for the possibility of making an emergency call. This issue can be triggered without requiring specific execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-28581

Affected Products

Android

CVE-2026-28581

Related Identifiers

Affected Products

References · 4