Platform Frameworks Base vulnerabilities

CVE-2025-0083 CVE-2025-0083: In multiple locations, there is a possible way to access content across user profiles due to URI double encoding In multiple locations, there is a possible way to access content across user profiles due to URI double encoding. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-0032 CVE-2024-0032: In multiple locations, there is a possible way to request access to directories that should be hidden due to improper input validation In multiple locations, there is a possible way to request access to directories that should be hidden due to improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.

CVE-2025-0082 CVE-2025-0082: In multiple functions of StatusHint In multiple functions of StatusHint.java and TelecomServiceImpl.java, there is a possible way to reveal images across users due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

CVE-2024-49740 CVE-2024-49740: In multiple locations, there is a possible crash loop due to resource exhaustion In multiple locations, there is a possible crash loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-43093 CVE-2024-43093: In shouldHideDocument of ExternalStorageProvider In shouldHideDocument of ExternalStorageProvider.java, there is a possible bypass of a file path filter designed to prevent access to sensitive directories due to incorrect unicode normalization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

CVE-2024-43090 CVE-2024-43090: In multiple locations, there is a possible cross-user image read due to a missing permission check In multiple locations, there is a possible cross-user image read due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.

CVE-2025-0080 CVE-2025-0080: In multiple locations, there is a possible way to overlay the installation confirmation dialog due to a tapjacking/overlay attack In multiple locations, there is a possible way to overlay the installation confirmation dialog due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-49743 CVE-2024-49743: In multiple locations, there is a possible way to launch an activity from the background due to BAL Bypass In multiple locations, there is a possible way to launch an activity from the background due to BAL Bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2025-0100 CVE-2025-0100: In onCreate of MediaProjectionPermissionActivity In onCreate of MediaProjectionPermissionActivity.java, there is a possible way to bypass user consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2025-0097 CVE-2025-0097: In transferTouchGesture of WindowManagerService In transferTouchGesture of WindowManagerService.java , there is a possible way to steal sensitive user input due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40134 CVE-2023-40134: In FillUi of FillUi In FillUi of FillUi.java, there is a possible way to view another users images. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40122 CVE-2023-40122: In applyCustomDescription of SaveUi In applyCustomDescription of SaveUi.java, there is a possible way to view another user's image content. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40139 CVE-2023-40139: In FillUi of FillUi In FillUi of FillUi.java, there is a possible way to view other user's image due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-49741 CVE-2024-49741: In multiple functions of AppWidgetServiceImpl In multiple functions of AppWidgetServiceImpl.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2025-0098 CVE-2025-0098: In multiple functions of TaskFragmentOrganizerController In multiple functions of TaskFragmentOrganizerController.java, there is a possible token leak due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2024-0037 CVE-2024-0037: In renderSuggestion of RemoteInlineSuggestionViewConnector In renderSuggestion of RemoteInlineSuggestionViewConnector.java , there is a possible way to view images belonging to a different user of the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40136 CVE-2023-40136: In setHeader of DialogFillUi In setHeader of DialogFillUi.java, there is a possible way to view other user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2025-0099 CVE-2025-0099: In multiple functions of CompanionDeviceManagerService In multiple functions of CompanionDeviceManagerService.java, there is a possible way to grant permissions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40133 CVE-2023-40133: In multiple locations of DialogFillUi In multiple locations of DialogFillUi.java, there is a possible way to view another user's image. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40135 CVE-2023-40135: In applyCustomDescription of SaveUi In applyCustomDescription of SaveUi.java, there is a possible way to view another user's image due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.