ASB-A-289375038

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-289375038.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-289375038
Aliases
  • A-289375038
  • CVE-2025-0092
Published
2025-03-01T00:00:00Z
Modified
2025-03-03T15:57:18.404251Z
Summary
[none]
Details

In handleBondStateChanged of AdapterService.java, there is a possible permission bypass due to misleading or insufficient UI. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

Affected packages

Android / platform/packages/modules/Bluetooth

Package

Name
platform/packages/modules/Bluetooth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
15-next:0
Fixed
15-next:2025-03-01

Affected versions

Other

15-next

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 1415.0,
                "function_hash": "328496924968262364522595459580258101092"
            },
            "id": "ASB-A-289375038-0b045be5",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/771aed3ea225d9ca2ef91e88f45f330ced952772",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "android/app/src/com/android/bluetooth/btservice/AdapterService.java",
                "function": "handleBondStateChanged"
            },
            "signature_type": "Function"
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "90511511724719131925215018654458747684",
                    "328640861835376691736958102479025757951",
                    "4604599442318127826404222897192213843",
                    "166923582262716703749327566635834012439",
                    "277246100430995070286525218009120002004",
                    "85684725380886847157996831565449166682",
                    "114127719858713300539102811389487493189",
                    "76703245458864547879356985980065665792"
                ]
            },
            "id": "ASB-A-289375038-5bca2364",
            "source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/771aed3ea225d9ca2ef91e88f45f330ced952772",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "android/app/src/com/android/bluetooth/btservice/AdapterService.java"
            },
            "signature_type": "Line"
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/771aed3ea225d9ca2ef91e88f45f330ced952772"
    ],
    "spl": "2025-03-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/apps/Bluetooth

Package

Name
platform/packages/apps/Bluetooth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12:0
Fixed
12:2025-03-01

Affected versions

Other

12

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Bluetooth/+/e3be5a26db30094f034a543ac60e6ff5da497bd7"
    ],
    "spl": "2025-03-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/apps/Bluetooth

Package

Name
platform/packages/apps/Bluetooth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
12L:0
Fixed
12L:2025-03-01

Affected versions

Other

12L

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Bluetooth/+/e3be5a26db30094f034a543ac60e6ff5da497bd7"
    ],
    "spl": "2025-03-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/Bluetooth

Package

Name
platform/packages/modules/Bluetooth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
15:0
Fixed
15:2025-03-01

Affected versions

Other

15

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/8ef714b803127ca193773c6d032457c01c1963d6"
    ],
    "spl": "2025-03-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/Bluetooth

Package

Name
platform/packages/modules/Bluetooth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2025-03-01

Affected versions

Other

13

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/038b1e8626399ff3f374d5af987e3efd64a19321"
    ],
    "spl": "2025-03-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}

Android / platform/packages/modules/Bluetooth

Package

Name
platform/packages/modules/Bluetooth

Affected ranges

Type
ECOSYSTEM
Events
Introduced
14:0
Fixed
14:2025-03-01

Affected versions

Other

14

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/038b1e8626399ff3f374d5af987e3efd64a19321"
    ],
    "spl": "2025-03-01",
    "severity": "High",
    "types": [
        "ID"
    ]
}