CVE-2025-48640
CVSS Score
8.0
EPSS Score
0.0%
EPSS Percentile
0th
In multiple locations, there is a possible 3rd party passkey entry pairing approval due to a missing permission check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
| Vendor | |
| Product | android |
| Ecosystems | |
| Industries | TechnologyMobile |
| Published | Jun 17, 2026 |
| Last Updated | Jun 18, 2026 |
Stay Ahead of the Next One
Get instant alerts for google android
Be the first to know when new high vulnerabilities affecting google android are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Google / Android
17