CVE-2025-48530
published 2025-09-04CVE-2025-48530: In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check. This could lead to remote code execution in…
high8.1CVSS 3.1
AVNACHPRNUINSUCHIHAH
In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check. This could lead to remote code execution in combination with other bugs, with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | external_rust_crabbyavif | >= 16-next:0 < 16-next:2025-08-01 | 16-next:2025-08-01 |
| platform | external_rust_crabbyavif | >= 16:0 < 16:2025-08-01 | 16:2025-08-01 |
GHSA
GHSA-cm4w-gmjc-w5mw: In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check
ghsa_unreviewed·2025-09-04
CVE-2025-48530 [HIGH] CWE-125 GHSA-cm4w-gmjc-w5mw: In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check
In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check. This could lead to remote code execution in combination with other bugs, with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-48530: In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check
osv·2025-08-01
CVE-2025-48530 CVE-2025-48530: In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check
In multiple locations, there is a possible condition that results in OOB accesses due to an incorrect bounds check. This could lead to remote code execution in combination with other bugs, with no additional execution privileges needed. User interaction is not needed for exploitation.
Android
CVE-2025-48530: Android Security Bulletin 2025-08-01
CVE: CVE-2025-48530
Severity: CRITICAL
Type: RCE
Affected AOSP versions: 16
References: A-419563680
[2]
vendor_android·2025-08-01·CVSS 8.1
CVE-2025-48530 [HIGH] CVE-2025-48530: Android Security Bulletin 2025-08-01
CVE: CVE-2025-48530
Severity: CRITICAL
Type: RCE
Affected AOSP versions: 16
References: A-419563680
[2]
Android Security Bulletin 2025-08-01
CVE: CVE-2025-48530
Severity: CRITICAL
Type: RCE
Affected AOSP versions: 16
References: A-419563680
[2]
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published