CVE-2025-22428

Name of the Vulnerable Software and Affected Versions AppInfoBase.java (affected versions not specified)

Description A logic error in the hasInteractAcrossUsersFullPermission function within the AppInfoBase.java file may allow granting permissions to an application on a secondary user from a primary user. This could lead to local escalation of privilege without requiring additional execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.