CVE-2025-32324: Elevation of privilege in Google Android
Severity: Type: vulnerabilityCVE-2025-32324
In onCommand of ActivityManagerShellCommand.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2025-32324: Elevation of privilege in Google Android
Unknown
Published: Thu Sep 04 2025 (09/04/2025, 18:33:51 UTC)
Source: CVE Database V5
Vendor/Project: Google
Product: Android
Description
In onCommand of ActivityManagerShellCommand.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- google_android
- Date Reserved
- 2025-04-04T23:30:30.730Z
- Cvss Version
- null
- State
- PUBLISHED
Threat ID: 68b9dcc488499799243c2f0c
Added to database: 9/4/2025, 6:39:00 PM
Last updated: 9/4/2025, 6:39:00 PM
Views: 1
Related Threats
CVE-2025-48533: Elevation of privilege in Google Android
UnknownVulnerabilityThu Sep 04 2025
CVE-2025-48530: Remote code execution in Google Android
UnknownVulnerabilityThu Sep 04 2025
CVE-2025-22441: Elevation of privilege in Google Android
UnknownVulnerabilityThu Sep 04 2025
CVE-2025-48581: Elevation of privilege in Google Android
UnknownVulnerabilityThu Sep 04 2025
CVE-2025-48563: Elevation of privilege in Google Android
UnknownVulnerabilityThu Sep 04 2025
Actions
Please log in to the Console to use AI analysis features.
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.