CVE-2025-48623 in Androidinformação

Sumário

de MITRE • 08/12/2025

In init_pkvm_hyp_vcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

Google Android

Reservar

22/05/2025

Divulgação

08/12/2025

Moderação

aceite

Entrada

VDB-334849

CPE

pronto

CWE

CWE-787 (confirmado)

CVSS

7.8 (NVD)

EPSS

0.00013

KEV

não

Atividades

muito baixo

Sector

Police, Finance, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-48623
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-48623
CVE Details	https://www.cvedetails.com/cve/CVE-2025-48623/

◂ Voltar Visão Geral Próximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!