Android ADB vulnerability CVE-2026-0073: Find impacted assets

Google disclosed CVE-2026-0073, a high-severity authentication bypass in the Android wireless ADB daemon (adbd) that allows an unauthenticated attacker with adjacent network access to achieve remote code execution as the shell user. Affects Android 14, 15, 16, and 16-qpr2 prior to the 2026-05-01 security patch; mitigation is to upgrade to the 2026-05-01 security patch level or later. The advisory also includes a runZero query (protocol:=adb AND os:Android) to locate potentially impacted assets.