Description
In multiple functions of KeyguardViewMediator.java , there is a possible way to bypass lockdown mode with screen pinning due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Published: 2026-06-01
Score: 3.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability originates from a logic flaw in the KeyguardViewMediator component of the Android operating system that allows an attacker to bypass the lockdown mode enforced by screen pinning. Based on the description, it is inferred that the attack vector is local. Because the flaw can be exploited locally without additional execution privileges and does not require user interaction, a local attacker can reveal sensitive data that should normally remain hidden when lockdown mode is active. This constitutes a local information disclosure vulnerability.

Affected Systems

Google’s Android platform is affected. The flaw is present in KeyguardViewMediator across all Android releases covered by the provided CPEs – Android 14.0, 15.0, 16.0 and the 16.0 qpr2 beta series – until the vendor releases a patch that corrects the logic error. All devices running these OS versions should be considered potentially vulnerable.

Risk and Exploitability

Based on the description, it is inferred that the attack vector is local, and the attack does not require user interaction. The EPSS value of less than 1% and the absence from CISA’s KEV catalog suggest that exploitation is currently rare, but the low CVSS score of 3.3 indicates only a modest impact per the scoring system. Nevertheless, because the attack does not require privilege escalation, any compromised device could suffer local information disclosure if the attacker gains basic user access.

Generated by OpenCVE AI on June 3, 2026 at 03:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the Android security patch that corrects the KeyguardViewMediator logic error, as described in the 2026‑06‑01 Android Security Bulletin.
  • If the patch is not yet available for a device, disable screen‑pinning lockdown mode to prevent the bypass until the fix can be deployed.
  • Continuously monitor Google’s Android Security Bulletin and the device’s update status to ensure the vulnerability is remediated in a future release.

Generated by OpenCVE AI on June 3, 2026 at 03:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 03 Jun 2026 03:45:00 +0000

Type Values Removed Values Added
Title Android Screen Pinning Bypass Enables Local Information Disclosure

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Title KeyguardViewMediator Logic Error Enables Bypass of Lockdown Mode Leading to Local Information Disclosure
Weaknesses CWE-200
CWE-287

Tue, 02 Jun 2026 19:00:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*
cpe:2.3:o:google:android:16.0:qpr2_beta_1:*:*:*:*:*:*
cpe:2.3:o:google:android:16.0:qpr2_beta_2:*:*:*:*:*:*
cpe:2.3:o:google:android:16.0:qpr2_beta_3:*:*:*:*:*:*

Tue, 02 Jun 2026 04:15:00 +0000

Type Values Removed Values Added
Title KeyguardViewMediator Logic Error Enables Bypass of Lockdown Mode Leading to Local Information Disclosure
Weaknesses CWE-200
CWE-287

Tue, 02 Jun 2026 02:15:00 +0000

Type Values Removed Values Added
Title Bypass Lockdown Mode via Logic Error in KeyguardViewMediator Leading to Local Information Disclosure
Weaknesses CWE-703

Tue, 02 Jun 2026 01:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 02 Jun 2026 00:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

Mon, 01 Jun 2026 22:45:00 +0000

Type Values Removed Values Added
Title Bypass Lockdown Mode via Logic Error in KeyguardViewMediator Leading to Local Information Disclosure
First Time appeared Google
Google android
Weaknesses CWE-703
Vendors & Products Google
Google android

Mon, 01 Jun 2026 21:45:00 +0000

Type Values Removed Values Added
Description In multiple functions of KeyguardViewMediator.java , there is a possible way to bypass lockdown mode with screen pinning due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
References

Subscriptions

Google Android
cve-icon MITRE

Status: PUBLISHED

Assigner: google_android

Published:

Updated: 2026-06-01T23:46:54.862Z

Reserved: 2025-05-22T18:12:23.625Z

Link: CVE-2025-48616

cve-icon Vulnrichment

Updated: 2026-06-01T23:46:39.293Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-01T22:16:18.717

Modified: 2026-06-02T18:58:55.317

Link: CVE-2025-48616

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-03T03:30:06Z

Weaknesses