In onCreate of NotificationAccessConfirmationActivity.java, there is a possible incorrect verification of proper intent filters in NLS due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
History
Fri, 05 Sep 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 05 Sep 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-863 | |
CPEs | cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:* |
|
Metrics |
cvssV3_1
|
Fri, 05 Sep 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android |
|
Vendors & Products |
Google
Google android |
Thu, 04 Sep 2025 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In onCreate of NotificationAccessConfirmationActivity.java, there is a possible incorrect verification of proper intent filters in NLS due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. | |
References |
|

Status: PUBLISHED
Assigner: google_android
Published:
Updated: 2025-09-05T21:03:06.878Z
Reserved: 2025-02-10T18:29:33.000Z
Link: CVE-2025-26442

Updated: 2025-09-05T16:12:26.767Z

Status : Modified
Published: 2025-09-04T18:15:43.473
Modified: 2025-09-05T21:15:35.893
Link: CVE-2025-26442

No data.

Updated: 2025-09-05T14:01:56Z