CVE-2026-0098 | Google Android 14/15/16/16-qpr2 Shared.java getCallingPackageName confused deputy

A vulnerability described as critical has been identified in Google Android 14/15/16/16-qpr2. This vulnerability affects the function getCallingPackageName of the file Shared.java. Executing a manipulation can lead to unintended intermediary.

This vulnerability is handled as CVE-2026-0098. It is possible to launch the attack on the local host. There is not any exploit available.VulDB Recent EntriesRead More