ASB-A-475228205
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-475228205.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-475228205
- Aliases
-
- A-475228205
- CVE-2026-28578
- Published
- 2026-06-01T00:00:00Z
- Modified
- 2026-06-03T15:06:08.149995907Z
- Summary
- [none]
- Details
-
In multiple functions of DevicePolicyManagerService.java, there is a possible desync from persistence due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/4914d6e98bd25e620867650e0e431df3ad23a886"
],
"severity": "High",
"types": [
"DoS"
],
"spl": "2026-06-01",
"vanir_signatures": [
{
"digest": {
"length": 412.0,
"function_hash": "303266711130788979874224706005915765840"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-019f769a",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/4914d6e98bd25e620867650e0e431df3ad23a886",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileCallerIdAccessPolicy"
}
},
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileContactsAccessPolicy"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-1d2256e2",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/4914d6e98bd25e620867650e0e431df3ad23a886",
"digest": {
"length": 418.0,
"function_hash": "207449837630846237906541959011152520299"
}
},
{
"digest": {
"length": 402.0,
"function_hash": "60826015810146396611988331290802557367"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-925c1201",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/4914d6e98bd25e620867650e0e431df3ad23a886",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setCredentialManagerPolicy"
}
},
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java"
},
"deprecated": false,
"signature_type": "Line",
"id": "ASB-A-475228205-b2edc768",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/4914d6e98bd25e620867650e0e431df3ad23a886",
"digest": {
"threshold": 0.9,
"line_hashes": [
"52303834117526964974535894149334157557",
"47092742295154542111358333548692782379",
"218494930842767904347382783561083953502",
"66193070088668267777623605746202773628",
"40504487971583235310430996958408732873",
"47092742295154542111358333548692782379",
"218494930842767904347382783561083953502",
"66193070088668267777623605746202773628",
"262351568022786085567949903422534282026",
"47092742295154542111358333548692782379",
"90121249441134976827702512807196265913",
"227943955620678516408729597126693293077",
"114447064935241536511235765435006917087",
"207382626587974545315557577389627551323",
"201313886097799427127474789421013396700"
]
}
}
]
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/36421c7d97b00d05fd0be4c7050c3bee59058ad8"
],
"spl": "2026-06-01",
"types": [
"DoS"
],
"vanir_signatures": [
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setCredentialManagerPolicy"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-14bdd0c4",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/36421c7d97b00d05fd0be4c7050c3bee59058ad8",
"digest": {
"length": 386.0,
"function_hash": "339273458278143368544769738232531133975"
}
},
{
"digest": {
"length": 380.0,
"function_hash": "285411880379529691995832778404715235780"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-206725a7",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/36421c7d97b00d05fd0be4c7050c3bee59058ad8",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileCallerIdAccessPolicy"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"52303834117526964974535894149334157557",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"40504487971583235310430996958408732873",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"262351568022786085567949903422534282026",
"47092742295154542111358333548692782379",
"90121249441134976827702512807196265913",
"227943955620678516408729597126693293077",
"168873420784130651682985356436263605776",
"207382626587974545315557577389627551323",
"201313886097799427127474789421013396700"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/36421c7d97b00d05fd0be4c7050c3bee59058ad8",
"signature_version": "v1",
"id": "ASB-A-475228205-63b441da",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java"
}
},
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileContactsAccessPolicy"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-d1d5105f",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/36421c7d97b00d05fd0be4c7050c3bee59058ad8",
"digest": {
"length": 386.0,
"function_hash": "240555449901019055093991664546335654922"
}
}
],
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/04023137da055ba8a7054d9772b5fdb36cb19ddb"
],
"spl": "2026-06-01",
"types": [
"DoS"
],
"vanir_signatures": [
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileCallerIdAccessPolicy"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-47eead7b",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/04023137da055ba8a7054d9772b5fdb36cb19ddb",
"digest": {
"length": 380.0,
"function_hash": "285411880379529691995832778404715235780"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"52303834117526964974535894149334157557",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"40504487971583235310430996958408732873",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"262351568022786085567949903422534282026",
"47092742295154542111358333548692782379",
"90121249441134976827702512807196265913",
"227943955620678516408729597126693293077",
"168873420784130651682985356436263605776",
"207382626587974545315557577389627551323",
"201313886097799427127474789421013396700"
]
},
"deprecated": false,
"signature_type": "Line",
"id": "ASB-A-475228205-4ac5fe40",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/04023137da055ba8a7054d9772b5fdb36cb19ddb",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java"
}
},
{
"digest": {
"length": 386.0,
"function_hash": "339273458278143368544769738232531133975"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/04023137da055ba8a7054d9772b5fdb36cb19ddb",
"signature_version": "v1",
"id": "ASB-A-475228205-6177cec3",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setCredentialManagerPolicy"
}
},
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileContactsAccessPolicy"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-af07a818",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/04023137da055ba8a7054d9772b5fdb36cb19ddb",
"digest": {
"length": 386.0,
"function_hash": "240555449901019055093991664546335654922"
}
}
],
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/bb3184f1df179ce052b37c9ad50e98ae5fed67fa"
],
"severity": "High",
"types": [
"DoS"
],
"spl": "2026-06-01",
"vanir_signatures": [
{
"digest": {
"length": 386.0,
"function_hash": "240555449901019055093991664546335654922"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/bb3184f1df179ce052b37c9ad50e98ae5fed67fa",
"signature_version": "v1",
"id": "ASB-A-475228205-1f9c3c1a",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileContactsAccessPolicy"
}
},
{
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java"
},
"deprecated": false,
"signature_type": "Line",
"id": "ASB-A-475228205-9ab18965",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/bb3184f1df179ce052b37c9ad50e98ae5fed67fa",
"digest": {
"threshold": 0.9,
"line_hashes": [
"52303834117526964974535894149334157557",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"40504487971583235310430996958408732873",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"262351568022786085567949903422534282026",
"47092742295154542111358333548692782379",
"90121249441134976827702512807196265913",
"227943955620678516408729597126693293077",
"168873420784130651682985356436263605776",
"207382626587974545315557577389627551323",
"201313886097799427127474789421013396700"
]
}
},
{
"digest": {
"length": 380.0,
"function_hash": "285411880379529691995832778404715235780"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/bb3184f1df179ce052b37c9ad50e98ae5fed67fa",
"signature_version": "v1",
"id": "ASB-A-475228205-af3253f2",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileCallerIdAccessPolicy"
}
},
{
"digest": {
"length": 386.0,
"function_hash": "339273458278143368544769738232531133975"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/bb3184f1df179ce052b37c9ad50e98ae5fed67fa",
"signature_version": "v1",
"id": "ASB-A-475228205-e969860d",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setCredentialManagerPolicy"
}
}
]
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/f344abfad1799fb6b16de99f43be955994f957ae"
],
"severity": "High",
"types": [
"DoS"
],
"spl": "2026-06-01",
"vanir_signatures": [
{
"digest": {
"length": 386.0,
"function_hash": "240555449901019055093991664546335654922"
},
"deprecated": false,
"signature_type": "Function",
"id": "ASB-A-475228205-03c83255",
"signature_version": "v1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/f344abfad1799fb6b16de99f43be955994f957ae",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileContactsAccessPolicy"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"210872116382483639414526789930992814917",
"28277747602812670171382934067539069453",
"328987492235139661856229426084791586868",
"205272411713154587056451093223560802429",
"52303834117526964974535894149334157557",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"40504487971583235310430996958408732873",
"47092742295154542111358333548692782379",
"232680074151319339441548200134114675080",
"309404041269946475577540432195829235635",
"262351568022786085567949903422534282026",
"47092742295154542111358333548692782379",
"90121249441134976827702512807196265913",
"227943955620678516408729597126693293077",
"168873420784130651682985356436263605776",
"207382626587974545315557577389627551323",
"201313886097799427127474789421013396700"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/frameworks/base/+/f344abfad1799fb6b16de99f43be955994f957ae",
"signature_version": "v1",
"id": "ASB-A-475228205-4eaf8dd1",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java"
}
},
{
"digest": {
"length": 380.0,
"function_hash": "285411880379529691995832778404715235780"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/f344abfad1799fb6b16de99f43be955994f957ae",
"signature_version": "v1",
"id": "ASB-A-475228205-b18be5eb",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setManagedProfileCallerIdAccessPolicy"
}
},
{
"digest": {
"length": 386.0,
"function_hash": "339273458278143368544769738232531133975"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/frameworks/base/+/f344abfad1799fb6b16de99f43be955994f957ae",
"signature_version": "v1",
"id": "ASB-A-475228205-eb7bd9bd",
"target": {
"file": "services/devicepolicy/java/com/android/server/devicepolicy/DevicePolicyManagerService.java",
"function": "setCredentialManagerPolicy"
}
}
]
}