CVE-2025-48596 in Androidinformação

Sumário

de MITRE • 08/12/2025

In appendFrom of Parcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

Google Android

Reservar

22/05/2025

Divulgação

08/12/2025

Moderação

aceite

Entrada

VDB-334822

CPE

pronto

CWE

CWE-125 (confirmado)

CVSS

7.8 (NVD)

EPSS

0.00006

KEV

não

Atividades

muito baixo

Sector

Lawfirm, Police, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-48596
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48596
CVE Details	https://www.cvedetails.com/cve/CVE-2025-48596/

◂ Voltar Visão Geral Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!