What is CVE-2026-28573?

CVE-2026-28573 is a medium-severity vulnerability in Google Android. CVSS score: 5.5/10. Published 2026-06-18.

How severe is CVE-2026-28573?

Medium severity. CVSS v3 base score is 5.5 out of 10.

Vulnerability in Google Android

CVE-2026-28573

In AndroidManifest.xml, there is a possible persistent denial of service due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for explo…

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Google Android — versions 14.0, 16, 16.0
Samsung Wear_os

References

security@android.com (vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2026-28573?: CVE-2026-28573 is a medium-severity vulnerability in Google Android. CVSS score: 5.5/10. Published 2026-06-18.
How severe is CVE-2026-28573?: Medium severity. CVSS v3 base score is 5.5 out of 10.