CVE-2025-20696
published 2025-08-04CVE-2025-20696: In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical…
medium6.8CVSS 3.1
AVPACLPRNUINSUCHIHAH
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09915215; Issue ID: MSV-3801.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| linuxfoundation | yocto | — | — |
| openwrt | openwrt | — | — |
| openwrt | openwrt | — | — |
| rdkcentral | rdk-b | — | — |
| zephyrproject | zephyr | — | — |
GHSA
GHSA-5h33-6pvx-h384: In DA, there is a possible out of bounds write due to a missing bounds check
ghsa_unreviewed·2025-08-04
CVE-2025-20696 [MEDIUM] CWE-787 GHSA-5h33-6pvx-h384: In DA, there is a possible out of bounds write due to a missing bounds check
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09915215; Issue ID: MSV-3801.
Android
CVE-2025-20696: DA
vendor_android·2025-09-01·CVSS 6.8
CVE-2025-20696 [MEDIUM] CVE-2025-20696: DA
Android Security Bulletin 2025-09-01
CVE: CVE-2025-20696
Severity: HIGH
Component: DA
References: A-421781778
M-ALPS09915215
*
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-08-04
Published