VulDB Recent Entries

A vulnerability described as critical has been identified in Google Android 13/14/15/16. Affected is an unknown function of the component system_server. Executing manipulation can lead to use after free. The identification of this vulnerability is CVE-2025-48543. The attack can only be executed locally. Furthermore, there is an exploit available. It is advisable to implement a patch to correct this issue.

A vulnerability marked as problematic has been reported in Google Android 15/16. This impacts an unknown function. Performing manipulation results in improper restriction of rendered ui layers. This vulnerability was named CVE-2025-48528. The attack needs to be approached locally. There is no available exploit. To fix this issue, it is recommended to deploy a patch.

A vulnerability labeled as critical has been found in Google Android 16. This affects the function markMediaAsFavorite of the file MediaProvider.java. Such manipulation leads to permission issues. This vulnerability is uniquely identified as CVE-2025-48532. Local access is required to approach this attack. No exploit exists. A patch should be applied to remediate this issue.

A vulnerability identified as critical has been detected in Google Android 13/14/15/16. The impacted element is the function checkPermissions of the file SafeActivityOptions.java. This manipulation causes permission issues. This vulnerability is handled as CVE-2025-48546. It is possible to launch the attack on the local host. There is not any exploit available. It is suggested to install a patch to address this issue.

A vulnerability categorized as critical has been discovered in Google Android 13/14/15/16. The affected element is an unknown function. The manipulation results in sql injection. This vulnerability is known as CVE-2025-48544. It is possible to launch the attack remotely. No exploit is available. Applying a patch is advised to resolve this issue.

A vulnerability was found in Google Android 13/14/15/16. It has been rated as critical. Impacted is the function getCallingPackageName of the component CredentialStorage. The manipulation leads to permission issues. This vulnerability is traded as CVE-2025-48531. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android 13/14/15/16. It has been declared as critical. This issue affects the function onCreate of the file SelectAccountActivity.java. Executing manipulation can lead to permission issues. This vulnerability appears as CVE-2025-48523. The attack requires local access. There is no available exploit. It is best practice to apply a patch to resolve this issue.

A vulnerability was found in Google Android 13/14/15. It has been classified as problematic. This vulnerability affects the function getDefaultCBRPackageName of the file CellBroadcastHandler.java. Performing manipulation results in denial of service. This vulnerability is reported as CVE-2025-48534. The attack requires a local approach. No exploit exists. Applying a patch is the recommended action to fix this issue.

A vulnerability was found in Google Android 13/14 and classified as problematic. This affects the function android_app of the file android.bp. Such manipulation leads to Local Privilege Escalation. This vulnerability is documented as CVE-2025-22415. The attack needs to be performed locally. There is not any exploit available. It is advisable to implement a patch to correct this issue.

A vulnerability has been found in Google Android 13/14 and classified as critical. Affected by this issue is the function FrpBypassAlertActivity of the file FrpBypassAlertActivity.java. This manipulation causes permission issues. This vulnerability is registered as CVE-2025-22414. The attack needs to be launched locally. No exploit is available. To fix this issue, it is recommended to deploy a patch.

A vulnerability, which was classified as problematic, was found in Google Android 13. Affected by this vulnerability is an unknown functionality of the file apk-versions.txt. The manipulation results in Local Privilege Escalation. This vulnerability is cataloged as CVE-2024-49731. The attack must be initiated from a local position. There is no exploit available. A patch should be applied to remediate this issue.

A vulnerability, which was classified as problematic, has been found in Google Android 14. Affected is the function getComponentName of the file AccessibilitySettingsUtils.java of the component Talkback Service. The manipulation leads to Local Privilege Escalation. This vulnerability is listed as CVE-2025-26439. The attack must be carried out locally. There is no available exploit. It is suggested to install a patch to address this issue.

A vulnerability classified as problematic was found in Google Android 14. This impacts the function setupAccessibilityServices of the file AccessibilityFragment.java of the component Accessibility Service. Executing manipulation can lead to Local Privilege Escalation. This vulnerability is tracked as CVE-2025-26431. The attack is restricted to local execution. No exploit exists. Applying a patch is advised to resolve this issue.

A vulnerability classified as problematic has been found in Google Android 13/14. This affects the function initPhoneSwitch of the file SystemSettingsFragment.java. Performing manipulation results in Local Privilege Escalation. This vulnerability is identified as CVE-2025-26419. The attack is only possible with local access. There is not any exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability described as problematic has been identified in Google Android 13/14. The impacted element is the function setupAccessibilityServices of the file AccessibilityFragment.java of the component Accessibility Service. Such manipulation leads to denial of service. This vulnerability is referenced as CVE-2024-40664. The attack can only be performed from a local environment. No exploit is available. It is best practice to apply a patch to resolve this issue.

A vulnerability marked as problematic has been reported in MarceloTessaro promptcraft-forge-studio 0. The affected element is an unknown function of the file src/utils/validation.ts. This manipulation causes cross site scripting. The identification of this vulnerability is CVE-2025-58361. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability labeled as problematic has been found in Google Android 13/14/15/16. Impacted is an unknown function. The manipulation results in information disclosure. This vulnerability was named CVE-2025-48561. The attack needs to be approached locally. There is no available exploit. It is advisable to implement a patch to correct this issue.

A vulnerability identified as problematic has been detected in Google Android 13/14/15/16. This issue affects the function onNullBinding of the file RemoteFillService.java. The manipulation leads to Local Privilege Escalation. This vulnerability is uniquely identified as CVE-2025-48563. Local access is required to approach this attack. No exploit exists. To fix this issue, it is recommended to deploy a patch.

A vulnerability categorized as problematic has been discovered in Google Android 13/14/15/16. This vulnerability affects unknown code. Executing manipulation can lead to information disclosure. This vulnerability is handled as CVE-2025-48551. It is possible to launch the attack on the local host. There is not any exploit available. A patch should be applied to remediate this issue.

A vulnerability was found in Google Android 13/14/15/16. It has been rated as critical. This affects an unknown part of the file AccountManagerService.java. Performing manipulation results in resource consumption. This vulnerability is known as CVE-2025-48542. Attacking locally is a requirement. No exploit is available. It is suggested to install a patch to address this issue.