CVE-2025-22433

Publication date

2025-09-02 22:11:20

Family

google_android

State

PUBLISHED

Description

In canForward of IntentForwarderActivity.java, there is a possible bypass of the cross profile intent filter most commonly used in Work Profile scenarios due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.