CVE-2025-26429
published 2025-09-04CVE-2025-26429: In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to improper input validation. This could lead to local denial of…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | frameworks_base | >= 13:0 < 13:2025-05-01 | 13:2025-05-01 |
| platform | frameworks_base | >= 14:0 < 14:2025-05-01 | 14:2025-05-01 |
| platform | frameworks_base | >= 15-next:0 < 15-next:2025-05-01 | 15-next:2025-05-01 |
| platform | frameworks_base | >= 15:0 < 15:2025-05-01 | 15:2025-05-01 |
GHSA
GHSA-w655-fw42-gqw2: In collectOps of AppOpsService
ghsa_unreviewed·2025-09-04
CVE-2025-26429 [MEDIUM] CWE-20 GHSA-w655-fw42-gqw2: In collectOps of AppOpsService
In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-26429: In collectOps of AppOpsService
osv·2025-05-01
CVE-2025-26429 CVE-2025-26429: In collectOps of AppOpsService
In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Android
CVE-2025-26429: Android Security Bulletin 2025-05-01
CVE: CVE-2025-26429
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15
References: A-372678095
vendor_android·2025-05-01·CVSS 5.5
CVE-2025-26429 [MEDIUM] CVE-2025-26429: Android Security Bulletin 2025-05-01
CVE: CVE-2025-26429
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15
References: A-372678095
Android Security Bulletin 2025-05-01
CVE: CVE-2025-26429
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15
References: A-372678095
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published