CVE-2025-22435 — Type Confusion

Vendor	Product	Version range	Fixed in
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
platform	packages_modules_bluetooth	>= 13:0 < 13:2025-04-01	13:2025-04-01
platform	packages_modules_bluetooth	>= 14:0 < 14:2025-04-01	14:2025-04-01
platform	packages_modules_bluetooth	>= 15-next:0 < 15-next:2025-04-01	15-next:2025-04-01
platform	packages_modules_bluetooth	>= 15:0 < 15:2025-04-01	15:2025-04-01

GHSA

GHSA-f52v-pwh9-8wrw: In avdt_msg_ind of avdt_msg

ghsa_unreviewed·2025-09-03

CVE-2025-22435 GHSA-f52v-pwh9-8wrw: In avdt_msg_ind of avdt_msg In avdt_msg_ind of avdt_msg.cc, there is a possible memory corruption due to type confusion. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

OSV

CVE-2025-22435: In avdt_msg_ind of avdt_msg

osv·2025-04-01

CVE-2025-22435 CVE-2025-22435: In avdt_msg_ind of avdt_msg In avdt_msg_ind of avdt_msg.cc, there is a possible memory corruption due to type confusion. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Android

CVE-2025-22435: Android Security Bulletin 2025-04-01 CVE: CVE-2025-22435 Severity: HIGH Type: EoP Affected AOSP versions: 13, 14, 15 References: A-273995284

vendor_android·2025-04-01·CVSS 9.8

CVE-2025-22435 [CRITICAL] CVE-2025-22435: Android Security Bulletin 2025-04-01 CVE: CVE-2025-22435 Severity: HIGH Type: EoP Affected AOSP versions: 13, 14, 15 References: A-273995284 Android Security Bulletin 2025-04-01 CVE: CVE-2025-22435 Severity: HIGH Type: EoP Affected AOSP versions: 13, 14, 15 References: A-273995284

CVE-2025-22435: In avdt_msg_ind of avdt_msg.cc, there is a possible memory corruption due to type confusion. This could lead to paired device escalation of privilege with no…

Affected