PT-2025-11065 · Unknown · Adapterservice.Java

Published

2025-03-01

Updated

2025-08-27

CVE-2025-0093

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: AdapterService.java (affected versions not specified)

Description: The software contains a possible unapproved data access due to a missing permission check within the handleBondStateChanged function of AdapterService.java. This could lead to remote information disclosure without requiring additional execution privileges. User interaction is required for exploitation.

Recommendations: Implement a permission check within the handleBondStateChanged function of AdapterService.java to prevent unapproved data access.

Fix

Information Disclosure

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-732

Related Identifiers

ASB-A-289811388

CVE-2025-0093

Affected Products

Adapterservice.Java

PT-2025-11065 · Unknown · Adapterservice.Java

CVE-2025-0093

Weakness Enumeration

Related Identifiers

Affected Products

References · 10