NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-48638	In __pkvm_load_tracing of trace.c, there is a possible out-of-bounds write due to improper input validation. This could lead to local escalation of pr...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48637	In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of pri...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48633	In hasAccountsOnAnyUser of DevicePolicyManagerService.java, there is a possible way to add a Device Owner after provisioning due to a logic error in t...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48632	In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due t...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48631	In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to remote ...	2025-12-08	7.5	NETWORK	HIGH	NVD
CVE-2025-48629	In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48628	In validateIconUserBoundary of PrintManagerService.java, there is a possible cross-user image leak due to a confused deputy. This could lead to local ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48627	In startNextMatchingActivity of ActivityTaskManagerService.java, there is a possible way to launch an activity from the background due to a logic erro...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48626	In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to re...	2025-12-08	9.8	NETWORK	CRITICAL	NVD
CVE-2025-48624	In multiple functions of arm-smmu-v3.c, there is a possible out-of-bounds write due to improper input validation. This could lead to local escalation ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48623	In init_pkvm_hyp_vcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of priv...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48622	In ProcessArea of dng_misc_opcodes.cpp, there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosu...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48621	In DefaultTransitionHandler.java, there is a possible way to enable a tapjacking attack due to a insecure default. This could lead to local escalation...	2025-12-08	7.3	LOCAL	HIGH	NVD
CVE-2025-48620	In onSomePackagesChanged of VoiceInteractionManagerService.java, there is a possible way for a third party application's component name to persist eve...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48618	In processLaunchBrowser of CommandParamsFactory.java, there is a possible browser interaction from the lockscreen due to improper locking. This could ...	2025-12-08	6.8	PHYSICAL	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.