CVE-2025-48542
published 2025-09-04CVE-2025-48542: In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | frameworks_base | >= 13:0 < 13:2025-09-01 | 13:2025-09-01 |
| platform | frameworks_base | >= 14:0 < 14:2025-09-01 | 14:2025-09-01 |
| platform | frameworks_base | >= 15:0 < 15:2025-09-01 | 15:2025-09-01 |
| platform | frameworks_base | >= 16-next:0 < 16-next:2025-09-01 | 16-next:2025-09-01 |
| platform | frameworks_base | >= 16:0 < 16:2025-09-01 | 16:2025-09-01 |
Android
CVE-2025-48542: Android Security Bulletin 2025-09-01
CVE: CVE-2025-48542
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15, 16
References: A-273501008
vendor_android·2025-09-01·CVSS 5.5
CVE-2025-48542 [MEDIUM] CVE-2025-48542: Android Security Bulletin 2025-09-01
CVE: CVE-2025-48542
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15, 16
References: A-273501008
Android Security Bulletin 2025-09-01
CVE: CVE-2025-48542
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15, 16
References: A-273501008
GHSA
GHSA-qxm3-g494-7wxr: In multiple functions of AccountManagerService
ghsa_unreviewed·2025-09-04
CVE-2025-48542 [MEDIUM] CWE-400 GHSA-qxm3-g494-7wxr: In multiple functions of AccountManagerService
In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-48542: In multiple functions of AccountManagerService
osv·2025-09-01
CVE-2025-48542 CVE-2025-48542: In multiple functions of AccountManagerService
In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published