Vulnerabilities

CVE-2025-22427

by Fred · 02/09/2025

In onCreate of NotificationAccessConfirmationActivity.java, there is a possible way to grant notification access above the lock screen due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

More information : https://android.googlesource.com/platform/packages/apps/Settings/+/7255b2eaac4b5cb1bc3bbf23509b33c7355a8657

Similar

Tags: Cybersecurity Alert