CVE-2025-48595: Android Framework Integer Overflow Vulnerability

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2025-48595CVSS 8.4CISA KEVKnown Exploited

CVE-2025-48595: Android Framework Integer Overflow Vulnerability

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS
8.4 HIGH
EPSS
74.61%
Known exploited
yes
Product
Framework

What is known

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Sources