← Back

CVE-2025-48598

nvd nist
Published: Dec 8, 2025Modified: Jun 17, 2026

JSON object

Loading...
6.6
Vector
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.7 / Impact: 5.9
Source: NVD

Description

In multiple locations, there is a possible way to alter the primary user's face unlock settings due to a confused deputy. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected (1)

Products: Google: Android
1 product
Android
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Version 16.0

Timeline

No history available yet.