CVE-2025-48537
published 2025-09-04CVE-2025-48537: In multiple locations, there is a possible way to persistently DoS the device due to improper input validation. This could lead to local information disclosure…
high7.1CVSS 3.1
AVLACLPRLUINSUCHINAH
In multiple locations, there is a possible way to persistently DoS the device due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | frameworks_base | >= 13:0 < 13:2025-09-01 | 13:2025-09-01 |
| platform | frameworks_base | >= 14:0 < 14:2025-09-01 | 14:2025-09-01 |
| platform | frameworks_base | >= 15:0 < 15:2025-09-01 | 15:2025-09-01 |
| platform | frameworks_base | >= 16-next:0 < 16-next:2025-09-01 | 16-next:2025-09-01 |
| platform | frameworks_base | >= 16:0 < 16:2025-09-01 | 16:2025-09-01 |
GHSA
GHSA-7f9m-hvg7-85rq: In multiple locations, there is a possible way to persistently DoS the device due to improper input validation
ghsa_unreviewed·2025-09-04
CVE-2025-48537 [HIGH] CWE-20 GHSA-7f9m-hvg7-85rq: In multiple locations, there is a possible way to persistently DoS the device due to improper input validation
In multiple locations, there is a possible way to persistently DoS the device due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-48537: In multiple locations, there is a possible way to persistently DoS the device due to improper input validation
osv·2025-09-01
CVE-2025-48537 CVE-2025-48537: In multiple locations, there is a possible way to persistently DoS the device due to improper input validation
In multiple locations, there is a possible way to persistently DoS the device due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Android
CVE-2025-48537: Android Security Bulletin 2025-09-01
CVE: CVE-2025-48537
Severity: HIGH
Type: ID
Affected AOSP versions: 13, 14, 15, 16
References: A-391894257
vendor_android·2025-09-01·CVSS 7.1
CVE-2025-48537 [HIGH] CVE-2025-48537: Android Security Bulletin 2025-09-01
CVE: CVE-2025-48537
Severity: HIGH
Type: ID
Affected AOSP versions: 13, 14, 15, 16
References: A-391894257
Android Security Bulletin 2025-09-01
CVE: CVE-2025-48537
Severity: HIGH
Type: ID
Affected AOSP versions: 13, 14, 15, 16
References: A-391894257
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published