A vulnerability, which was classified as critical , has been found in Google Android 14/15/16/16-qpr2 . This vulnerability affects the function setGlobalProxy of the file DevicePolicyManagerService.java . The manipulation leads to improper synchronization. This vulnerability is referenced as CVE-2026-0078 . The attack can only be performed from a local environment. No exploit is available.