HIGH
OPPO
CVE published 2026-05-19
CVE-2026-22069
A local privilege escalation vulnerability exists in O+ Connect because it fails to validate the identity of the caller on the pipe interface.
OPPO CVE debriefs
These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
MEDIUM
OPPO
CVE published 2026-04-27
CVE-2026-22077
## Summary CVE-2026-22077 describes a trusted domain validation flaw in the OPPO Wallet application that enables attackers to bypass protected interface access restrictions. The vulnerability may result in account token hijacking and sensitive information disclosure. The issue carries a CVSS 4.0 score of 5.6 (MEDIUM severity) and was published on April 27, 2026, with a subsequent modification on May 19, 2 [truncated]