CVE-2025-48647

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description A memory overwrite issue exists in the cpm fwtp msg handler function within cpm/google/lib/tracepoint/cpm fwtp ipc.c. This improper input validation could lead to local escalation of privilege without requiring additional execution privileges or user interaction. The issue resides in Google CPM Tracepoint.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.