How severe is CVE-2025-22418?

CVE-2025-22418 has a CVSS v3 score of 7.8 (HIGH).

CVE-2025-22418

Name: android
Author: google

7.8HIGH

In multiple locations, there is a possible confused deputy due to Intent Redirect. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is

Опубликовано: 9/2/2025Обновлено: 9/4/2025

Описание

In multiple locations, there is a possible confused deputy due to Intent Redirect. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

ИИ-АнализНа базе ИИ

Затронутые продукты

googleandroid

13.0

googleandroid

14.0

Ссылки

https://android.googlesource.com/platform/packages/apps/Settings/+/ad9fb985df470bed5f77da4701f2aebe45af5ff3
Product
https://source.android.com/security/bulletin/2025-04-01
Vendor Advisory