CVE-2025-48570 in Androidinfo

Zusammenfassung

von MITRE • 02.06.2026

In multiple functions of PipTaskOrganizer.java, there is a possible way to launch an activity from the background due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Google Android

Reservieren

22.05.2025

Veröffentlichung

02.06.2026

Moderieren

akzeptiert

Eintrag

VDB-367840

CPE

bereit

CWE

Unbekannt

CVSS

7.8 (VulDB)

EPSS

0.00003

KEV

nein

Aktivitäten

very low

Sektor

Insurance, Homeoffice, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-48570
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48570
CVE Details	https://www.cvedetails.com/cve/CVE-2025-48570/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!