CVE-2025-48559
published 2025-09-04CVE-2025-48559: In multiple functions of AppOpsService.java, there is a possible add a large amount of app ops due to improper input validation. This could lead to local…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
In multiple functions of AppOpsService.java, there is a possible add a large amount of app ops due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | frameworks_base | >= 13:0 < 13:2025-09-01 | 13:2025-09-01 |
| platform | frameworks_base | >= 14:0 < 14:2025-09-01 | 14:2025-09-01 |
| platform | frameworks_base | >= 15:0 < 15:2025-09-01 | 15:2025-09-01 |
| platform | frameworks_base | >= 16-next:0 < 16-next:2025-09-01 | 16-next:2025-09-01 |
| platform | frameworks_base | >= 16:0 < 16:2025-09-01 | 16:2025-09-01 |
GHSA
GHSA-6jpg-8wp5-5c3m: In multiple functions of AppOpsService
ghsa_unreviewed·2025-09-04
CVE-2025-48559 [MEDIUM] CWE-20 GHSA-6jpg-8wp5-5c3m: In multiple functions of AppOpsService
In multiple functions of AppOpsService.java, there is a possible add a large amount of app ops due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-48559: In multiple functions of AppOpsService
osv·2025-09-01
CVE-2025-48559 CVE-2025-48559: In multiple functions of AppOpsService
In multiple functions of AppOpsService.java, there is a possible add a large amount of app ops due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Android
CVE-2025-48559: Android Security Bulletin 2025-09-01
CVE: CVE-2025-48559
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15, 16
References: A-416491779
vendor_android·2025-09-01·CVSS 5.5
CVE-2025-48559 [MEDIUM] CVE-2025-48559: Android Security Bulletin 2025-09-01
CVE: CVE-2025-48559
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15, 16
References: A-416491779
Android Security Bulletin 2025-09-01
CVE: CVE-2025-48559
Severity: HIGH
Type: DoS
Affected AOSP versions: 13, 14, 15, 16
References: A-416491779
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published