ASB-A-338024220
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-338024220.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-338024220
- Aliases
-
- A-338024220
- CVE-2025-22421
- Published
- 2025-04-01T00:00:00Z
- Modified
- 2025-04-08T15:57:01Z
- Summary
- [none]
- Details
-
In contentDescForNotification of NotificationContentDescription.kt, there is a possible notification content leak through the lockscreen due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 424.0,
"function_hash": "263978064244653231029642655350194398176"
},
"id": "ASB-A-338024220-cf477809",
"source": "https://android.googlesource.com/platform/frameworks/base/+/0674f38d3a5d0d469b68e04cfc1e320a3227c8a7",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "packages/SystemUI/multivalentTests/src/com/android/systemui/statusbar/StatusBarIconViewTest.java",
"function": "testContentDescForNotification_noNotifContent"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"258263362330223125965649222910646079590",
"296426909537472859540296699299744221296",
"234145682590788006723826199283805879126",
"160602895723124963135406880596679736704",
"192309829544498264325824790217114638312",
"278810791017256811664122979046680266738",
"138288712746096733954222596279885579053",
"322298220891952064173279618455357813101",
"212784325614391935960170488018967081202",
"220560234318887588874132122629750457138",
"195640995933596761101212863493991724393",
"329171763938630057444876446595119636409",
"93499057730957016284455034043731893053",
"184312766919009654814695906590813654855",
"290934806924239145555150058698784580637",
"209956249397318272149202711056490348187",
"175798014889331664936340466915192203114"
]
},
"id": "ASB-A-338024220-db347562",
"source": "https://android.googlesource.com/platform/frameworks/base/+/0674f38d3a5d0d469b68e04cfc1e320a3227c8a7",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "packages/SystemUI/multivalentTests/src/com/android/systemui/statusbar/StatusBarIconViewTest.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/e55a350cb80404544d2b227b4de0058505788c3c",
"https://android.googlesource.com/platform/frameworks/base/+/0674f38d3a5d0d469b68e04cfc1e320a3227c8a7"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"ID"
]
}
Android / platform/frameworks/base
Package
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"123355636111071642314580884707686804340",
"253207037034010904802763923856606144898",
"269744729046037479528908802726254815747",
"305295502505864695356027994991517792708",
"124795081146475036575687833772928737478",
"246870881382455333361181585451852320026",
"129579010542382146278710402961519900373",
"270844517411334464386640307366842266391",
"228377645856565604324353275590218735697",
"298768647893865552950213944748235300003"
]
},
"id": "ASB-A-338024220-4fa9ce71",
"source": "https://android.googlesource.com/platform/frameworks/base/+/1aa8f6d4de1c1e731fe1757c3f9d0115ba7c7d68",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "packages/SystemUI/src/com/android/systemui/statusbar/StatusBarIconView.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 861.0,
"function_hash": "272641791795843317539035139951254249152"
},
"id": "ASB-A-338024220-8d0deb93",
"source": "https://android.googlesource.com/platform/frameworks/base/+/1aa8f6d4de1c1e731fe1757c3f9d0115ba7c7d68",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "packages/SystemUI/src/com/android/systemui/statusbar/StatusBarIconView.java",
"function": "contentDescForNotification"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/1aa8f6d4de1c1e731fe1757c3f9d0115ba7c7d68"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"ID"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"14"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"123355636111071642314580884707686804340",
"253207037034010904802763923856606144898",
"269744729046037479528908802726254815747",
"305295502505864695356027994991517792708",
"124795081146475036575687833772928737478",
"246870881382455333361181585451852320026",
"129579010542382146278710402961519900373",
"270844517411334464386640307366842266391",
"228377645856565604324353275590218735697",
"298768647893865552950213944748235300003"
]
},
"id": "ASB-A-338024220-67ae7631",
"source": "https://android.googlesource.com/platform/frameworks/base/+/1aa8f6d4de1c1e731fe1757c3f9d0115ba7c7d68",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "packages/SystemUI/src/com/android/systemui/statusbar/StatusBarIconView.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"14"
],
"digest": {
"length": 861.0,
"function_hash": "272641791795843317539035139951254249152"
},
"id": "ASB-A-338024220-f99ec4ed",
"source": "https://android.googlesource.com/platform/frameworks/base/+/1aa8f6d4de1c1e731fe1757c3f9d0115ba7c7d68",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "packages/SystemUI/src/com/android/systemui/statusbar/StatusBarIconView.java",
"function": "contentDescForNotification"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/1aa8f6d4de1c1e731fe1757c3f9d0115ba7c7d68"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"ID"
]
}