CVE-2025-32331 — Protection Mechanism Failure

Vendor	Product	Version range	Fixed in
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
platform	frameworks_base	>= 15:0 < 15:2025-09-01	15:2025-09-01
platform	frameworks_base	>= 16-next:0 < 16-next:2025-09-01	16-next:2025-09-01
platform	frameworks_base	>= 16:0 < 16:2025-09-01	16:2025-09-01

GHSA

GHSA-gpr6-wxq9-fxqm: In showDismissibleKeyguard of KeyguardService

ghsa_unreviewed·2025-09-04

CVE-2025-32331 [HIGH] CWE-693 GHSA-gpr6-wxq9-fxqm: In showDismissibleKeyguard of KeyguardService In showDismissibleKeyguard of KeyguardService.java, there is a possible way to bypass app pinning due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

OSV

CVE-2025-32331: In showDismissibleKeyguard of KeyguardService

osv·2025-09-01

CVE-2025-32331 CVE-2025-32331: In showDismissibleKeyguard of KeyguardService In showDismissibleKeyguard of KeyguardService.java, there is a possible way to bypass app pinning due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Android

CVE-2025-32331: Android Security Bulletin 2025-09-01 CVE: CVE-2025-32331 Severity: HIGH Type: EoP Affected AOSP versions: 15, 16 References: A-404252173

vendor_android·2025-09-01·CVSS 7.8

CVE-2025-32331 [HIGH] CVE-2025-32331: Android Security Bulletin 2025-09-01 CVE: CVE-2025-32331 Severity: HIGH Type: EoP Affected AOSP versions: 15, 16 References: A-404252173 Android Security Bulletin 2025-09-01 CVE: CVE-2025-32331 Severity: HIGH Type: EoP Affected AOSP versions: 15, 16 References: A-404252173

CVE-2025-32331: In showDismissibleKeyguard of KeyguardService.java, there is a possible way to bypass app pinning due to a logic error in the code. This could lead to local…

Affected