CVE-2025-68712: n/a
SpSoft AppLock (com.sp.protector.free) 7.9.40 for Android allows a local attacker with physical access to bypass fingerprint or PIN authentication. Although the app integrates Android's biometric mechanisms, the lock is implemented with a custom overlay that fails to consistently enforce authentication. By navigating cascading interface flows - insecure navigation through exposed routes facilitates app control evasion {I.N.T.E.R.F.A.C.E] via advertisement or browser intents - an attacker can exit the lock interface without re-authentication and access protected apps (e.g., Chrome). This results in information disclosure and privilege escalation.
AI Analysis
Technical Summary
CVE-2025-68712 affects SpSoft AppLock (com.sp.protector.free) version 7.9.40 on Android. The vulnerability arises because the app implements its lock screen with a custom overlay that does not consistently enforce biometric or PIN authentication. An attacker with physical access can exploit insecure navigation paths exposed via advertisement or browser intents to bypass the lock interface. This allows the attacker to exit the lock screen without re-authentication and access protected applications, resulting in unauthorized information disclosure and privilege escalation.
Potential Impact
The vulnerability enables a local attacker with physical access to bypass authentication controls intended to protect apps on the device. This can lead to unauthorized access to sensitive applications such as web browsers, potentially exposing private information and elevating privileges on the device.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, users should avoid granting physical access to untrusted individuals and consider using alternative app locking solutions with verified security. Monitor vendor channels for updates or patches addressing this issue.
CVE-2025-68712: n/a
Description
SpSoft AppLock (com.sp.protector.free) 7.9.40 for Android allows a local attacker with physical access to bypass fingerprint or PIN authentication. Although the app integrates Android's biometric mechanisms, the lock is implemented with a custom overlay that fails to consistently enforce authentication. By navigating cascading interface flows - insecure navigation through exposed routes facilitates app control evasion {I.N.T.E.R.F.A.C.E] via advertisement or browser intents - an attacker can exit the lock interface without re-authentication and access protected apps (e.g., Chrome). This results in information disclosure and privilege escalation.
CVSS v3.1
Score 5.5medium
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2025-68712 affects SpSoft AppLock (com.sp.protector.free) version 7.9.40 on Android. The vulnerability arises because the app implements its lock screen with a custom overlay that does not consistently enforce biometric or PIN authentication. An attacker with physical access can exploit insecure navigation paths exposed via advertisement or browser intents to bypass the lock interface. This allows the attacker to exit the lock screen without re-authentication and access protected applications, resulting in unauthorized information disclosure and privilege escalation.
Potential Impact
The vulnerability enables a local attacker with physical access to bypass authentication controls intended to protect apps on the device. This can lead to unauthorized access to sensitive applications such as web browsers, potentially exposing private information and elevating privileges on the device.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, users should avoid granting physical access to untrusted individuals and consider using alternative app locking solutions with verified security. Monitor vendor channels for updates or patches addressing this issue.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- mitre
- Date Reserved
- 2025-12-24T00:00:00.000Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a171ce4e29bf47b50d1de1a
Added to database: 5/27/2026, 4:33:40 PM
Last enriched: 5/27/2026, 4:50:07 PM
Last updated: 5/29/2026, 12:23:50 PM
Views: 14
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.