← back
CVE-2025-48572

CVE-2025-48572

CVSS 7.8 HIGHEPSS 0.2%● KEVCWE-306
In short

An app can launch activities in the background without proper permission checks, allowing it to escalate its privileges on the device without the user's knowledge or action.

Technical detail

A permissions bypass in activity launching mechanisms allows unprivileged background processes to invoke restricted activities without proper authorization checks. Exploitation requires no additional privileges or user interaction, resulting in local privilege escalation with high impact on system integrity.

Summary generated and translated by AI from the official description.
In multiple locations, there is a possible way to launch activities from the background due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Google · Android

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://android.googlesource.com/platform/frameworks/base/+/e707f6600330691f9c67dc023c09f4cd2fc59192https://source.android.com/security/bulletin/2025-12-01https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48572