CVE-2026-22069— O+ Connect Local Privilege Escalation Vulnerability
Possible ATT&CK Techniques 1AI
T1068 · Exploitation for Privilege EscalationAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| OPPO | O+ Connect | 16.2.0 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-22069
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
O+ Connect Local Privilege Escalation Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A local privilege escalation vulnerability exists in O+ Connect because it fails to validate the identity of the caller on the pipe interface.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
特权授予不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
OPPO O+ Connect 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OPPO O+ Connect是中国OPPO公司的一个多设备互联与数据协同平台。 OPPO O+ Connect存在安全漏洞,该漏洞源于未能验证管道接口上调用者的身份,可能导致本地权限提升。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| OPPO | O+ Connect | 16.2.0 | - |
II. Public POCs for CVE-2026-22069
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-22069
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-22069 (1)
IV. Related Vulnerabilities
Same vendor: OPPO
- CVE-2026-22070
ColorOS Assistant Path Traversal Vulnerability - CVE-2026-22077
Sensitive Information Disclosure Vulnerability Caused by Tru - CVE-2025-27388
Arbitrary URL Loading in WebView Leading to Token Leakage Ri - CVE-2025-27387
OPPO Clone Phone uses weak WPA passphrase as only means of s - CVE-2024-1609
OPPO Store APP has a WebView component privilege escalation
V. Comments for CVE-2026-22069
No comments yet