PT-2025-11064 · Unknown · Adapterservice.Java

Publicado

2025-03-01

Atualizado

2025-08-27

CVE-2025-0092

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: AdapterService.java (affected versions not specified)

Description: A permission bypass exists due to misleading or insufficient UI in the handleBondStateChanged function of AdapterService.java. This could lead to remote information disclosure without requiring additional execution privileges. User interaction is required for exploitation.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insufficient Verification of Data Authenticity

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-356CWE-345

Identificadores relacionados

ASB-A-289375038

CVE-2025-0092

Produtos afetados

Adapterservice.Java

PT-2025-11064 · Unknown · Adapterservice.Java

CVE-2025-0092

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10