- EPSS 0.07%
- Veröffentlicht 02.03.2026 18:42:22
- Zuletzt bearbeitet 06.03.2026 04:16:00
In multiple functions of Nfc.h, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2025-48635
- EPSS 0.1%
- Veröffentlicht 02.03.2026 18:42:21
- Zuletzt bearbeitet 06.03.2026 04:15:59
In multiple functions of TaskFragmentOrganizerController.java, there is a possible activity token leak due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...
CVE-2025-48634
- EPSS 0.09%
- Veröffentlicht 02.03.2026 18:42:20
- Zuletzt bearbeitet 06.03.2026 04:15:59
In relayoutWindow of WindowManagerService.java, there is a possible tapjack attack due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for ...
CVE-2025-48630
- EPSS 0.09%
- Veröffentlicht 02.03.2026 18:42:17
- Zuletzt bearbeitet 06.03.2026 04:15:59
In drawLayersInternal of SkiaRenderEngine.cpp, there is a possible way to access the GPU cache due to side channel information disclosure. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...
CVE-2025-48619
- EPSS 0.1%
- Veröffentlicht 02.03.2026 18:42:16
- Zuletzt bearbeitet 06.03.2026 04:15:59
In multiple functions of ContentProvider.java, there is a possible way for an app with read-only access to truncate files due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges neede...
CVE-2025-48613
- EPSS 0.09%
- Veröffentlicht 02.03.2026 18:42:15
- Zuletzt bearbeitet 06.03.2026 04:15:58
In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. Use...
CVE-2025-48609
- EPSS 0.26%
- Veröffentlicht 02.03.2026 18:42:14
- Zuletzt bearbeitet 06.03.2026 04:15:58
In multiple functions of MmsProvider.java, there is a possible way to arbitrarily delete files which affect telephony, SMS, and MMS functionalities due to a path traversal error. This could lead to local denial of service with no additional execution...
CVE-2025-48605
- EPSS 0.11%
- Veröffentlicht 02.03.2026 18:42:13
- Zuletzt bearbeitet 06.03.2026 04:15:58
In multiple functions of KeyguardViewMediator.java, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not neede...
CVE-2025-48602
- EPSS 0.11%
- Veröffentlicht 02.03.2026 18:42:12
- Zuletzt bearbeitet 06.03.2026 04:15:58
In exitKeyguardAndFinishSurfaceBehindRemoteAnimation of KeyguardViewMediator.java, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...
CVE-2025-48587
- EPSS 0.09%
- Veröffentlicht 02.03.2026 18:42:11
- Zuletzt bearbeitet 06.03.2026 04:15:58
In multiple functions of ProfilingService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not need...