CVE-2025-20643
EUVD-2025-219303.02.2025, 04:15
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issue ID: MSV-2056.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| android | 12.0 | |
| android | 13.0 | |
| android | 14.0 | |
| android | 15.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-1295 - Debug Messages Revealing Unnecessary InformationThe product fails to adequately prevent the revealing of unnecessary and potentially sensitive system information within debugging messages.
- CWE-125 - Out-of-bounds ReadThe software reads data past the end, or before the beginning, of the intended buffer.