CVE-2025-48543

HIGH CISA KEV EPSS 41.6%

Published Sep 4, 20259mo ago · Modified Jun 17, 20261w ago

8.8 CVSS 3.1

High

Find Similar

Published Sep 4, 2025 9mo ago

Last Modified Jun 17, 2026 1w ago

KEV Listed Sep 4, 2025 9mo ago

KEV Due Sep 25, 2025 278d overdue

Description

In multiple locations, there is a possible way to escape chrome sandbox to attack android system_server due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS Details

Base Score

8.8

Exploitability

2.0

Impact

6.0

Vector string

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector Local

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Changed

Confidentiality High

Integrity High

Availability High

Threat Intelligence

CISA Known Exploited Overdue 278d

Added: Sep 4, 2025
Due: Sep 25, 2025

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

EPSS Exploit Probability

41.6% percentile

Exploit & Patch Status

Actively Exploited (KEV)

Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 4

Vendor	Product	Version	Range
google	android	13.0	any
google	android	14.0	any
google	android	15.0	any
google	android	16.0	any

References 3

android.googlesource.com https://android.googlesource.com/platform/art/+/444fc40dfb04d2ec5f74c443ed3a4dd45d3131f2

PatchProduct
source.android.com https://source.android.com/security/bulletin/2025-09-01

Vendor Advisory
cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48543

Third Party AdvisoryUS Government Resource

Remediation

android.googlesource.com https://android.googlesource.com/platform/art/+/444fc40dfb04d2ec5f74c443ed3a4dd45d3131f2

PatchProduct