CVE-2025-20906

Name of the Vulnerable Software and Affected Versions Android versions prior to SMR Feb-2025 Release 1

Description The issue concerns an improper export of Android application components in Settings, allowing local attackers to enable ADB. This could potentially be exploited by attackers with local access to the device.

Recommendations For Android versions prior to SMR Feb-2025 Release 1, as a temporary workaround, consider restricting access to the Settings application until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.