CVE-2026-0034

Name of the Vulnerable Software and Affected Versions ManagedServices (affected versions not specified)

Description An issue exists in the setPackageOrComponentEnabled function of ManagedServices.java related to improper input validation. This can result in a notification policy desync, potentially leading to local escalation of privilege without requiring additional execution privileges or user interaction. The vulnerable function is setPackageOrComponentEnabled().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.