Android Multiple Vulnerabilities
Release Date: 2 Dec 2025
RISK: Medium Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, denial of service condition and elevation of privilege on the targeted system.
Note:
CVE-2025-48633 and CVE-2025-48572 are being scattered exploited. There are indications that the vulnerabilities may be under limited, targeted exploitation. Hence, the risk level is rated as Medium Risk.
Impact
- Elevation of Privilege
- Denial of Service
- Information Disclosure
System / Technologies affected
- Android security patch level prior to 2025-12-01
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://source.android.com/docs/security/bulletin/2025-12-01
Vulnerability Identifier
- CVE-2023-40130
- CVE-2024-35970
- CVE-2025-22420
- CVE-2025-22432
- CVE-2025-32319
- CVE-2025-32328
- CVE-2025-32329
- CVE-2025-38236
- CVE-2025-38349
- CVE-2025-38500
- CVE-2025-48525
- CVE-2025-48536
- CVE-2025-48555
- CVE-2025-48564
- CVE-2025-48565
- CVE-2025-48566
- CVE-2025-48572
- CVE-2025-48573
- CVE-2025-48575
- CVE-2025-48576
- CVE-2025-48580
- CVE-2025-48583
- CVE-2025-48584
- CVE-2025-48586
- CVE-2025-48588
- CVE-2025-48589
- CVE-2025-48590
- CVE-2025-48591
- CVE-2025-48592
- CVE-2025-48594
- CVE-2025-48596
- CVE-2025-48597
- CVE-2025-48598
- CVE-2025-48599
- CVE-2025-48600
- CVE-2025-48601
- CVE-2025-48603
- CVE-2025-48604
- CVE-2025-48607
- CVE-2025-48610
- CVE-2025-48612
- CVE-2025-48614
- CVE-2025-48615
- CVE-2025-48617
- CVE-2025-48618
- CVE-2025-48620
- CVE-2025-48621
- CVE-2025-48622
- CVE-2025-48623
- CVE-2025-48624
- CVE-2025-48626
- CVE-2025-48627
- CVE-2025-48628
- CVE-2025-48629
- CVE-2025-48631
- CVE-2025-48632
- CVE-2025-48633
- CVE-2025-48637
- CVE-2025-48638
- CVE-2025-48639
沒有留言:
發佈留言