A vulnerability, which was classified as critical , was found in Google Android 14/15/16/16-qpr2 . The impacted element is an unknown function of the file DevicePolicyManagerService.java . Such manipulation leads to denial of service. This vulnerability is referenced as CVE-2026-28578 . The attack can only be performed from a local environment. No exploit is available.