CVE-2025-48589

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description A flaw exists in the Framework component of Android operating systems related to insufficient protection of system data. Exploitation may allow a remote attacker to elevate privileges. The issue stems from a logic error in code within multiple functions of HeaderPrivacyIconsController.kt, potentially granting permissions across users without requiring user interaction or additional execution privileges, leading to local privilege escalation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.