In multiple locations, there is a possible way to escape chrome sandbox to attack android system_server due to a use after free. This could lead to lo

ANDROID

04-09-2025 21:11

CVE-2025-48543 Vulnerabilidad documentada

8.8 HIGH

Tags

#android

#exploit

#server

#db

#chrome

#add

#privilege

#execution

#attack

Descripción

In multiple locations, there is a possible way to escape chrome sandbox attack android system_server due use after free. This could lead local escalation of privilege with no additional execution privileges needed. User interaction not needed for exploitation.

https://android.googlesource.com/platform/art/+/444fc40dfb04d2ec5f74c443ed3a4dd45d3131f2

https://source.android.com/security/bulletin/2025-09-01

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-48543

Resultados similares

Coincidentes en almenos en 50% de los tags

05-09-2025 CVE-2025-41408
Improper authorization in handler for custom URL scheme issue in "Yahoo! Shopping" App for Andr...
Ver información

04-09-2025 CVE-2025-48551
In multiple locations, there is a possible leak of an image across the Android User isolation b...
Ver información