Security Advisory

CVE-2025-48538

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-04 18:34:17

Last updated 2025-09-04 20:22:57

Assigner google_android

State PUBLISHED

Description

In setApplicationHiddenSettingAsUser of PackageManagerService.java, there is a possible way to hide a system critical package due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

← Browse all CVEs View on cve.org ↗