PT-2025-4181 · Google · Android 12+2
Published
2025-02-04
·
Updated
2025-02-04
·
CVE-2025-20899
CVSS v3.1
4.0
Medium
| Vector | AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
PushNotification versions prior to 13.0.00.15 in Android 12
PushNotification versions prior to 14.0.00.7 in Android 13
PushNotification versions prior to 15.1.00.5 in Android 14
Description
The issue is related to improper access control in PushNotification, allowing local attackers to access sensitive information.
Recommendations
For PushNotification version prior to 13.0.00.15 in Android 12, update to version 13.0.00.15 or later.
For PushNotification version prior to 14.0.00.7 in Android 13, update to version 14.0.00.7 or later.
For PushNotification version prior to 15.1.00.5 in Android 14, update to version 15.1.00.5 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Android 12
Android 13
Android 14