NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-48615	In getComponentName of MediaButtonReceiverHolder.java, there is a possible desync in persistence due to resource exhaustion. This could lead to local ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48614	In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check....	2025-12-08	4.6	PHYSICAL	MEDIUM	NVD
CVE-2025-48612	In multiple locations, there is a possible way for an application on a work profile to set the main user's default NFC payment setting due to improper...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48610	In __pkvm_guest_relinquish_to_host of mem_protect.c, there is a possible configuration data leak due to a logic error in the code. This could lead to ...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48607	In multiple locations, there is a possible way to create a large amount of app ops due to a logic error in the code. This could lead to local denial o...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48604	In multiple locations, there is a possible way to read files from another user due to a missing permission check. This could lead to local information...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48603	In InputMethodInfo of InputMethodInfo.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denia...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48601	In multiple locations, there is a possible permanent denial of service due to improper input validation. This could lead to local escalation of privil...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48600	In multiple files, there is a possible way to reveal information across users due to a missing permission check. This could lead to local information ...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48599	In multiple functions of WifiScanModeActivity.java, there is a possible way to bypass a device config restriction due to a missing permission check. T...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48598	In multiple locations, there is a possible way to alter the primary user's face unlock settings due to a confused deputy. This could lead to physical ...	2025-12-08	6.6	PHYSICAL	MEDIUM	NVD
CVE-2025-48597	In multiple locations, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to loca...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48596	In appendFrom of Parcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege wi...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48594	In onUidImportance of DisassociationProcessor.java, there is a possible way to retain companion application privileges after disassociation due to imp...	2025-12-08	7.3	LOCAL	HIGH	NVD
CVE-2025-48592	In initDecoder of C2SoftDav1dDec.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disc...	2025-12-08	7.5	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.