CVE-2025-26456_CVE-2025-26456

5.5 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Description

In multiple functions of DexUseManagerLocal.java, there is a possible way to crash system server due to a logic error in the code. This could lead to local permanent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Basic Information

ID CVE-2025-26456

Source google_android

Published Sep 4, 2025 at 17:15

Modified Sep 5, 2025 at 21:02

Affected Product

Vendor Google

Product Android

Version 15

Affected Versions Google Android 15
Google Android 14

CWE Classification

CWE-703

References

{
    "lastseen": "",
    "description": "In multiple functions of DexUseManagerLocal.java, there is a possible way to crash system server due to a logic error in the code. This could lead to local permanent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.",
    "published": "2025-09-04T17:15:03.841Z",
    "modified": "2025-09-05T21:02:08.942Z",
    "type": "cve",
    "title": "CVE-2025-26456",
    "source": "google_android",
    "references": "https://android.googlesource.com/platform/art/+/1aedae6e1049aa794b3554183bf07634c8fa291b\nhttps://android.googlesource.com/platform/art/+/3c76194d116bad95e11bda345feaedda6c02c8b4\nhttps://android.googlesource.com/platform/art/+/06a99377e368b688dbeb4e6bb11b6e1dfca8bb70\nhttps://source.android.com/security/bulletin/2025-06-01",
    "id": "CVE-2025-26456",
    "bulletinFamily": "",
    "cwe": [
        "CWE-703"
    ],
    "cvelist": null,
    "sourceData": "Google Android 15\nGoogle Android 14",
    "sourceHref": "",
    "cvss": {
        "score": 5.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Android",
    "version": "15",
    "vendor": "Google",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}