How severe is CVE-2025-22418?

CVE-2025-22418 has a CVSS v3 score of 7.8 (HIGH).

CVE-2025-22418

Name: android
Author: google

7.8HIGH

In multiple locations, there is a possible confused deputy due to Intent Redirect. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is

Veröffentlicht: 9/2/2025Aktualisiert: 9/4/2025

Beschreibung

In multiple locations, there is a possible confused deputy due to Intent Redirect. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

KI-AnalyseKI-gestützt

Betroffene Produkte

googleandroid

13.0

googleandroid

14.0

Referenzen

https://android.googlesource.com/platform/packages/apps/Settings/+/ad9fb985df470bed5f77da4701f2aebe45af5ff3
Product
https://source.android.com/security/bulletin/2025-04-01
Vendor Advisory