CVE-2025-26436

In clearAllowBgActivityStarts of PendingIntentRecord.java, there is a possible way for an application to launch an activity from the background due to BAL Bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2025-26436

CVE-2025-26436 refers to a BAL bypass in Android’s PendingIntentRecord.clearAllowBgActivityStarts, enabling an application to launch an activity from the background and achieve local elevation of privilege without user interaction. Affected component: Android Framework (PendingIntentRecord.java)....

CVE-2025-26436

In clearAllowBgActivityStarts of PendingIntentRecord.java, there is a possible way for an application to launch an activity from the background due to BAL Bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2025-26436

In clearAllowBgActivityStarts of PendingIntentRecord.java, there is a possible way for an application to launch an activity from the background due to BAL Bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

Google Android 安全漏洞

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from a privilege bypass vulnerability that can be exploited by ...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by background activity that may be initiated as a result of logic errors in multiple functions of LocationProviderManager.java. An attacker...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to an unsafe default value in the onNullBinding function in RemoteFillService.java that causes background activity to start. An attacker can exploit th...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from the American company Google. A security vulnerability exists in Google Android that stems from a logic error that causes background activity to start, potentially leading to local elevation of privilege...

PT-2025-36067

Name of the Vulnerable Software and Affected Versions: SafeActivityOptions.java affected versions not specified Description: A logic error in the checkPermissions function of SafeActivityOptions.java may allow for the launch of background activities. This could lead to local escalation of privile...

Google Android 安全漏洞

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from a logic error vulnerability that can be exploited by...

PT-2025-36026

Name of the Vulnerable Software and Affected Versions: AccessibilityServiceConnection.java affected versions not specified Description: A logic error in the code within AccessibilityServiceConnection.java may allow for the launch of background activities, potentially leading to local escalation o...

PT-2025-36033

Name of the Vulnerable Software and Affected Versions: AppSearchManagerService.java affected versions not specified Description: A logic error in the executeAppFunction function within AppSearchManagerService.java may allow for a background activity launch. This could lead to local escalation of...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that can be exploited by an attacker to elevate privileges due to a logic error in the executeAppFunction function in AppSearchManagerService.java that...

PT-2025-36082

Name of the Vulnerable Software and Affected Versions: RemoteFillService.java affected versions not specified Description: The RemoteFillService.java component contains a flaw in the onNullBinding function related to an insecure default value. This can result in unauthorized background activity...

PT-2025-36070

Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: A missing permission check could allow recording audio via a background application, potentially leading to local escalation of privilege. User interaction is not required for exploitation...

PT-2025-36025

Name of the Vulnerable Software and Affected Versions: LocationProviderManager affected versions not specified Description: A logic error in multiple functions within LocationProviderManager.java may allow for a background activity launch, potentially leading to local privilege escalation without...

CVE-2025-21030

Improper handling of insufficient permission in AppPrelaunchManagerService prior to SMR Sep-2025 Release 1 in Chinese Android 15 allows local attackers to execute arbitrary application in the background...

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management...

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management...

CVE-2025-21030

Summary for CVE-2025-21030 : The vulnerability affects Samsung Mobile devices running Android with the AppPrelaunchManagerService. It stems from improper handling of insufficient permissions in the service, exposing a local attack surface that can let a non-privileged attacker cause arbitrary app...