ASB-A-375407167
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-375407167.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-375407167
- Aliases
-
- A-375407167
- CVE-2025-0075
- Published
- 2025-03-01T00:00:00Z
- Modified
- 2026-04-21T15:25:42.831358Z
- Summary
- [none]
- Details
-
In processservicesearchattrreq of sdp_server.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/packages/modules/Bluetooth
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 7527.0,
"function_hash": "242458238196945440098011377559197208300"
},
"id": "ASB-A-375407167-8177b7e8",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/d62bf15de2fb8161bab7067f6e8704452bd52460",
"target": {
"function": "process_service_search_attr_req",
"file": "system/stack/sdp/sdp_server.cc"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"21449444399169415137039231101742242443",
"60515099035128252460509346087551164686",
"254748262588180354977847863067803374759",
"100903316257957078435583893446814753876"
]
},
"id": "ASB-A-375407167-e948181d",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/d62bf15de2fb8161bab7067f6e8704452bd52460",
"target": {
"file": "system/stack/sdp/sdp_server.cc"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/d62bf15de2fb8161bab7067f6e8704452bd52460"
],
"types": [
"RCE"
],
"spl": "2025-03-01",
"severity": "Critical"
}
Android / platform/packages/modules/Bluetooth
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 7953.0,
"function_hash": "324815705769937897209967449889129448480"
},
"id": "ASB-A-375407167-ac964ca0",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/f23300552c43a4f503debcf0236f29211ee1c557",
"target": {
"function": "process_service_search_attr_req",
"file": "system/stack/sdp/sdp_server.cc"
}
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"91418632319498322876677883531524763797",
"9566919150869272321742117416091613434",
"254748262588180354977847863067803374759",
"129950038488680540049713335411255211234"
]
},
"id": "ASB-A-375407167-e4e2bb60",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/modules/Bluetooth/+/f23300552c43a4f503debcf0236f29211ee1c557",
"target": {
"file": "system/stack/sdp/sdp_server.cc"
}
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Bluetooth/+/f23300552c43a4f503debcf0236f29211ee1c557"
],
"types": [
"RCE"
],
"spl": "2025-03-01",
"severity": "Critical"
}