Android Unicode Normalization Vulnerability Allowing Local Privilege Escalation

Vulnerability

A vulnerability exists in Android due to incorrect Unicode normalization, which can bypass a file path filter intended to block access to sensitive directories. This flaw could lead to local privilege escalation without requiring additional execution privileges. Exploitation of this vulnerability does require user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive directories, potentially allowing for local privilege escalation.

Added: Mar 2, 2026, 7:47 PM

Updated: Mar 2, 2026, 11:24 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.8

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.8

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android Unicode Normalization Vulnerability Allowing Local Privilege Escalation

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating