3 matches found
CVE-2025-48633
In hasAccountsOnAnyUser of DevicePolicyManagerService.java, there is a possible way to add a Device Owner after provisioning due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
Google patches 107 Android flaws, including two being actively exploited
Google has patched 107 vulnerabilities in Android in its December 2025 Android Security Bulletin, including two high-severity flaws that are being actively exploited. The December updates are available for Android 13, 14, 15, and 16. Android vendors are notified of all issues at least a month...
CVE-2025-48633
creationtimestamp| type| source ---|---|--- 2025-12-01 22:25:48+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115646657177918322 2025-12-02 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1693 2025-12-02 09:32:43+00:00| seen|...