CVE-2025-22441

CVSS v3.1

7.3

High

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The vulnerability relates to insufficient access control within the Framework component of Android operating systems. Exploitation may allow an attacker to elevate their privileges. The issue involves an object read from the RemoteViews bundle provided by the Widget providing app, which could contain inaccurate data fields.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-441CWE-264CWE-284

Related Identifiers

ASB-A-376028556

BDU:2025-09416

CVE-2025-22441

Affected Products

Android

CVE-2025-22441

Weakness Enumeration

Related Identifiers

Affected Products

References · 13