CVE-2025-27701NULL Pointer Dereference in Google Android

CWE-476NULL Pointer Dereference4 documents4 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 92.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Android
Timeline
PublishedMay 27

Description

In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array(). Later this values will be derefenced without prior NULL check, which can lead to local Temporary DoS or OOB Read, leading to information disclosure.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

CVEListV5google/androidAndroid kernel

🔴Vulnerability Details

3
CVEList
CVE-2025-27701: In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array()2025-05-27
GHSA
GHSA-x37m-q3cw-3j2c: In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array()2025-05-27
OSV
CVE-2025-27701: In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array()2025-05-01
CVE-2025-27701 — NULL Pointer Dereference in Google | cvebase