ASB-A-350456241
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-350456241.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-350456241
- Aliases
-
- A-350456241
- CVE-2025-22424
- Published
- 2025-04-01T00:00:00Z
- Modified
- 2025-04-08T15:58:27Z
- Summary
- [none]
- Details
-
In multiple locations, there is a possible way to reveal images across users due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 2106.0,
"function_hash": "122749625844804206727342454752676686296"
},
"id": "ASB-A-350456241-503a84da",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6775f07552f15f6e4b934bb9552f7a6abff8060b",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "getInstalledApplications"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"15870670946479014925001504625572540566",
"266496136111753541690104297175217800057",
"256033668868439213716330198766041779588",
"72923278655251581498243308851500364391",
"98905019191585788313594137073002121425",
"267145194869585725088647465490166871692",
"178824460229124039209746682262284872734",
"32888512578613526980746288787537898207",
"149303953833791877644512825266718304072",
"73876162608022179835938230523821631111",
"10191450910670444366152688014456025508",
"111365901445882203949516727381253004922",
"154716211210760544107959204467901304495",
"16390171742763364730724830698676653437",
"147946162775492104294407966842086961863",
"145693316129868691273772613216711399073",
"35882275691100037462877197287475299546",
"222528837614798955560984759610539387666",
"281153006355958011749245036745581092893",
"91837217503181450060727752121693815721",
"97832320229534722407012942704610568251",
"154573272478387978490097957500149675549",
"211002399056754244271423834466983655530"
]
},
"id": "ASB-A-350456241-80ee7c25",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6775f07552f15f6e4b934bb9552f7a6abff8060b",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 197.0,
"function_hash": "155955387924007233392608071178537083333"
},
"id": "ASB-A-350456241-ab2c5159",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6775f07552f15f6e4b934bb9552f7a6abff8060b",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "getComponentEnabledSetting"
},
"signature_type": "Function"
},
{
"digest": {
"length": 1984.0,
"function_hash": "5647340085746230413610397063328464262"
},
"id": "ASB-A-350456241-d1de0edb",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6775f07552f15f6e4b934bb9552f7a6abff8060b",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "queryIntentServicesInternal"
},
"signature_type": "Function"
},
{
"digest": {
"length": 570.0,
"function_hash": "8306612149884868563026530448652594284"
},
"id": "ASB-A-350456241-e79f093e",
"source": "https://android.googlesource.com/platform/frameworks/base/+/6775f07552f15f6e4b934bb9552f7a6abff8060b",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "hasCrossUserPermission"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/d1ec2efc0b8941a0585712d5b4cec95fd9f12f17",
"https://android.googlesource.com/platform/frameworks/base/+/6775f07552f15f6e4b934bb9552f7a6abff8060b"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/8dabe17d3bb3a780c06730262d28edbc38a06218",
"https://android.googlesource.com/platform/frameworks/base/+/517492cb0b1b2fb664de1689548dbfe4a8a3cec1"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"57339914458931691710384622355105500640",
"96745049509738410035755485359915924349",
"256033668868439213716330198766041779588",
"72923278655251581498243308851500364391",
"98905019191585788313594137073002121425",
"267145194869585725088647465490166871692",
"178824460229124039209746682262284872734",
"32888512578613526980746288787537898207",
"264875104936512111300848035006535202788",
"271655580764290341023650166012204054618",
"29740387121134890746022108021521388352",
"232740267204609464100447218023341939531",
"544833157332720308311909603872673442",
"126765616413512870019687800692235248867",
"197867991546047462033292404306628545077",
"25690728072073030173148040545132618370",
"275139400502528615818323190449660054497",
"222138090669019414867210976300950441745",
"73604074511342174716566070041484039019",
"141608774621243931203729885815945819946",
"222528837614798955560984759610539387666",
"281153006355958011749245036745581092893",
"91837217503181450060727752121693815721",
"97832320229534722407012942704610568251",
"154573272478387978490097957500149675549",
"211002399056754244271423834466983655530"
]
},
"id": "ASB-A-350456241-085db1f1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/09e1305514e53ed73c9bcc79d25ccf77f623e6b0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java"
},
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"57307936203995413972944607704107101105",
"183057301538891077389068000267017133616",
"242691351160885750097927431463468652038",
"159971660088949769821375506581406084819",
"36913861435273227248918589552137622929",
"36963201016912102583229836077585078143",
"55766225966301963280177765834222273378",
"41950295011078535475049143437751156035",
"41380579415712750401924041556804812701",
"85770552592431473164032735928327496872",
"219997553884769946559652061920708055675",
"198234216519597277862920543544592306576",
"1487286327549188928671549598742772044"
]
},
"id": "ASB-A-350456241-149285ad",
"source": "https://android.googlesource.com/platform/frameworks/base/+/9f9a68e9e8485211d803aec0cb934b61409009c3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 462.0,
"function_hash": "196228320601304568157696006298430319031"
},
"id": "ASB-A-350456241-5788499c",
"source": "https://android.googlesource.com/platform/frameworks/base/+/09e1305514e53ed73c9bcc79d25ccf77f623e6b0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "hasCrossUserPermission"
},
"signature_type": "Function"
},
{
"digest": {
"length": 1716.0,
"function_hash": "196231182221639152333999076903005978913"
},
"id": "ASB-A-350456241-90088f0d",
"source": "https://android.googlesource.com/platform/frameworks/base/+/09e1305514e53ed73c9bcc79d25ccf77f623e6b0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "getInstalledApplications"
},
"signature_type": "Function"
},
{
"digest": {
"length": 197.0,
"function_hash": "155955387924007233392608071178537083333"
},
"id": "ASB-A-350456241-9ea86b71",
"source": "https://android.googlesource.com/platform/frameworks/base/+/09e1305514e53ed73c9bcc79d25ccf77f623e6b0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "getComponentEnabledSetting"
},
"signature_type": "Function"
},
{
"digest": {
"length": 1888.0,
"function_hash": "86954973004694357275985886223532729658"
},
"id": "ASB-A-350456241-df332a01",
"source": "https://android.googlesource.com/platform/frameworks/base/+/09e1305514e53ed73c9bcc79d25ccf77f623e6b0",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "queryIntentServicesInternal"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 1211.0,
"function_hash": "249151320877369229577323512686903901657"
},
"id": "ASB-A-350456241-e7be7f5d",
"source": "https://android.googlesource.com/platform/frameworks/base/+/9f9a68e9e8485211d803aec0cb934b61409009c3",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "resolveContentProvider"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/09e1305514e53ed73c9bcc79d25ccf77f623e6b0",
"https://android.googlesource.com/platform/frameworks/base/+/9f9a68e9e8485211d803aec0cb934b61409009c3"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 1878.0,
"function_hash": "162419856787718227743110672559810970109"
},
"id": "ASB-A-350456241-1db247d8",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d87d678b1480e42c9c9d5b50d7b4b9a7585f5647",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "getInstalledApplications"
},
"signature_type": "Function"
},
{
"digest": {
"length": 1888.0,
"function_hash": "86954973004694357275985886223532729658"
},
"id": "ASB-A-350456241-553023af",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d87d678b1480e42c9c9d5b50d7b4b9a7585f5647",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "queryIntentServicesInternal"
},
"signature_type": "Function"
},
{
"digest": {
"length": 197.0,
"function_hash": "155955387924007233392608071178537083333"
},
"id": "ASB-A-350456241-7b07caad",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d87d678b1480e42c9c9d5b50d7b4b9a7585f5647",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "getComponentEnabledSetting"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"292900562621289740165420360404681557470",
"254099383506272289078753119801457610562",
"8382420818903945909209296020667851894",
"159971660088949769821375506581406084819",
"36913861435273227248918589552137622929",
"36963201016912102583229836077585078143",
"55766225966301963280177765834222273378",
"41950295011078535475049143437751156035",
"41380579415712750401924041556804812701",
"85770552592431473164032735928327496872",
"219997553884769946559652061920708055675",
"198234216519597277862920543544592306576",
"1487286327549188928671549598742772044"
]
},
"id": "ASB-A-350456241-9d4b90e1",
"source": "https://android.googlesource.com/platform/frameworks/base/+/97e34e5a6bfa57236995550c5d1d12f979c29ab6",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java"
},
"signature_type": "Line"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"57339914458931691710384622355105500640",
"96745049509738410035755485359915924349",
"256033668868439213716330198766041779588",
"72923278655251581498243308851500364391",
"98905019191585788313594137073002121425",
"267145194869585725088647465490166871692",
"178824460229124039209746682262284872734",
"32888512578613526980746288787537898207",
"264875104936512111300848035006535202788",
"271655580764290341023650166012204054618",
"29740387121134890746022108021521388352",
"232740267204609464100447218023341939531",
"544833157332720308311909603872673442",
"126765616413512870019687800692235248867",
"197867991546047462033292404306628545077",
"25690728072073030173148040545132618370",
"290442913872884727345794975608903147363",
"310151990810170675759313300378787045167",
"95997925121681771021803279627538258027",
"215555870435068607277313027158318557484",
"222528837614798955560984759610539387666",
"281153006355958011749245036745581092893",
"91837217503181450060727752121693815721",
"97832320229534722407012942704610568251",
"154573272478387978490097957500149675549",
"211002399056754244271423834466983655530"
]
},
"id": "ASB-A-350456241-ef617ce3",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d87d678b1480e42c9c9d5b50d7b4b9a7585f5647",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"14"
],
"digest": {
"length": 1211.0,
"function_hash": "249151320877369229577323512686903901657"
},
"id": "ASB-A-350456241-f69558aa",
"source": "https://android.googlesource.com/platform/frameworks/base/+/97e34e5a6bfa57236995550c5d1d12f979c29ab6",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "resolveContentProvider"
},
"signature_type": "Function"
},
{
"digest": {
"length": 449.0,
"function_hash": "102896054550205968779892655968754707601"
},
"id": "ASB-A-350456241-fa2e5e00",
"source": "https://android.googlesource.com/platform/frameworks/base/+/d87d678b1480e42c9c9d5b50d7b4b9a7585f5647",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "services/core/java/com/android/server/pm/ComputerEngine.java",
"function": "hasCrossUserPermission"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/d87d678b1480e42c9c9d5b50d7b4b9a7585f5647",
"https://android.googlesource.com/platform/frameworks/base/+/97e34e5a6bfa57236995550c5d1d12f979c29ab6"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}