Local Privilege Escalation in ActivityManagerService of Android
CVE-2026-0047
8.4HIGH
What is CVE-2026-0047?
The vulnerability found in the dumpBitmapsProto method of ActivityManagerService.java allows a malicious application to bypass necessary permission checks, potentially granting it unauthorized access to sensitive user information. This flaw does not require any additional execution privileges or user interaction for exploitation, posing a significant security risk for devices operating on unpatched versions of Android.
Affected Version(s)
Android 16-qpr2