Android Biometric Service Fingerprint Unlock Privilege Escalation Vulnerability

Vulnerability

A logic error in the BiometricService component of Android could allow unauthorized activation of fingerprint unlock. This vulnerability enables local privilege escalation without requiring additional execution rights or user interaction.

Impact

Exploitation of this vulnerability could lead to unauthorized access through fingerprint authentication, allowing a user to gain elevated privileges on the device.

Added: Mar 2, 2026, 7:32 PM

Updated: Mar 2, 2026, 8:52 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android Biometric Service Fingerprint Unlock Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating