Platform Packages Apps Certinstaller vulnerabilities
3 known vulnerabilities affecting platform/packages_apps_certinstaller.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
UNKNOWN3
Vulnerabilities
Page 1 of 1
CVE-2025-48575UNKNOWN≥ 16-qpr2-next:0, < 16-qpr2-next:2025-12-01≥ 15:0, < 15:2025-12-01+3 more2025-12-01
CVE-2025-48575 CVE-2025-48575: In multiple functions of CertInstaller
In multiple functions of CertInstaller.java, there is a possible way to install certificates due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2021-0537UNKNOWN≥ 11:0, < 11:2021-06-012021-06-01
CVE-2021-0537 CVE-2021-0537: In onCreate of WiFiInstaller
In onCreate of WiFiInstaller.java, there is a possible way to install a malicious Hotspot 2.0 configuration due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.
osv
CVE-2021-0536UNKNOWN≥ 11:0, < 11:2021-06-012021-06-01
CVE-2021-0536 CVE-2021-0536: In dropFile of WiFiInstaller, there is a way to delete files accessible to CertInstaller due to a confused deputy
In dropFile of WiFiInstaller, there is a way to delete files accessible to CertInstaller due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
osv