Logic Error in Wireless ADB Authentication in Android Products
CVE-2026-0073

8.8HIGH

Key Information:

Vendor

Google
Status
Android
Vendor
CVE Published:
4 May 2026

Badges

📈 Trended📈 Score: 9,960👾 Exploit Exists🟡 Public PoC📰 News Worthy

What is CVE-2026-0073?

CVE-2026-0073 is a vulnerability found in Android's Wireless ADB (Android Debug Bridge) system, specifically linked to the mutual authentication process of wireless connections. This flaw arises from a logic error in the implementation, which can potentially allow an unauthorized party to exploit this weakness. If successfully exploited, this vulnerability can lead to remote code execution with the privileges of the shell user, meaning an attacker could gain significant access to the system without requiring any interaction from the user. The implications of this vulnerability are particularly concerning given that Android devices are widely used across various sectors, and this vulnerability could enable sophisticated attacks without the need for direct user engagement.

Potential impact of CVE-2026-0073

  1. Remote Code Execution: The primary risk associated with CVE-2026-0073 is that it allows attackers to execute arbitrary code on the affected device. This level of access can facilitate various malicious activities, including data theft, unauthorized control over the device, or installation of additional malware.

  2. Widespread Accessibility: Since this vulnerability relates to the Wireless ADB feature, it can be exploited by any nearby devices without requiring prior access or complicated exploitation tactics. This ease of access can make it particularly dangerous in environments with many devices, where an attacker could operate from a close range.

  3. Security Compromise of Devices: Exploiting this vulnerability can lead to a cascading effect on device security. Gaining shell access can allow actors to modify or disable security features, introduce persistent malware strains, or pivot to other connected systems, thereby broadening the attack surface of an organization.

Affected Version(s)

Android 16-qpr2

Android 16

Android 15

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2026-0073
Created by 0xbinder

poc-CVE-2026-0073
Created by adityatelange

CVE-2026-0073-Android-ADBD-bypass-POC
Created by MartinPSDev

News Articles

favicon imageCybersecuritynews

PoC Exploit Released for Android 0-Click Vulnerability that Enables Remote Shell Access

Google disclosed zero-click flaw in Android’s adbd service that lets attackers gain remote shell access without user interaction.

2 weeks ago

favicon imageTechrepublic

Google Update: Android Flaw Could Put Billions of Devices at Risk

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk.

3 weeks ago

favicon imageEsecurity Planet

Android Zero-Click RCE Vulnerability Enables Remote Shell Access   | eSecurity Planet

A patched Android RCE flaw allows nearby attackers to gain zero-click remote shell access.

3 weeks ago

References

https://source.android.com/docs/security/bulletin/2026/20...
vendor-advisory

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • 📈

    Vulnerability started trending

  • 📰

    First article discovered by It Security News

  • Vulnerability published

  • Vulnerability Reserved

Credit

Ovi (@0x0v1 + Barghest.asia)
.