CVE-2025-22430
published 2025-09-02CVE-2025-22430: In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check. This could lead to local…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | frameworks_base | >= 15-next:0 < 15-next:2025-04-01 | 15-next:2025-04-01 |
| platform | frameworks_base | >= 15:0 < 15:2025-04-01 | 15:2025-04-01 |
Android
CVE-2025-22430: Android Security Bulletin 2025-04-01
CVE: CVE-2025-22430
Severity: HIGH
Type: ID
Affected AOSP versions: 15
References: A-374257207
vendor_android·2025-04-01·CVSS 5.5
CVE-2025-22430 [MEDIUM] CVE-2025-22430: Android Security Bulletin 2025-04-01
CVE: CVE-2025-22430
Severity: HIGH
Type: ID
Affected AOSP versions: 15
References: A-374257207
Android Security Bulletin 2025-04-01
CVE: CVE-2025-22430
Severity: HIGH
Type: ID
Affected AOSP versions: 15
References: A-374257207
GHSA
GHSA-cv65-whjq-w7j3: In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check
ghsa_unreviewed·2025-09-03
CVE-2025-22430 GHSA-cv65-whjq-w7j3: In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check
In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-22430: In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check
osv·2025-04-01
CVE-2025-22430 CVE-2025-22430: In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check
In isInSignificantPlace of multiple files, there is a possible way to access sensitive information due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-02
Published