In DeviceId of DeviceId.java, there is a possible desync in persistence due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.CreditsCanyie(石松洲) of LSPosed TeamReferenceshttps://source.android.com/docs/security/bulletin/pixel/2026/2026-03-01
