CVE-2025-68711

Name of the Vulnerable Software and Affected Versions AppLockZ App Lock and Fingerprint Lock version 4.2.11

Description A local attacker with physical access can bypass the PIN lock because the lock is implemented as an overlay instead of using Android's secure authentication APIs. By navigating cascading interface flows through exposed routes via advertisement or browser intents, an attacker can evade lockscreen verification to access protected applications, leading to privilege escalation and information disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.