Unauthorized Access in Camera Application by Google
CVE-2026-0158

3.3LOW

Key Information:

Vendor

Google

Status
Vendor
CVE Published:
16 June 2026

What is CVE-2026-0158?

The Camera application developed by Google contains a security flaw that allows unauthorized access to user photos due to an inadequate permission verification mechanism. This vulnerability could enable local information disclosure without requiring any additional execution rights or user interactions, posing a significant risk to user privacy.

Affected Version(s)

Android Android kernel

References

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.