CVE-2026-0023

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description A flaw exists in the PackageInstallerService.java component, specifically within the createSessionInternal function. This issue allows an application to potentially alter its ownership due to a lack of proper permission verification. Successful exploitation could result in local privilege escalation without requiring additional execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.