ASB-A-388034510
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-388034510.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-388034510
- Aliases
-
- A-388034510
- CVE-2025-48536
- Published
- 2025-12-01T00:00:00Z
- Modified
- 2025-12-11T16:56:15.352779Z
- Summary
- [none]
- Details
-
In grantAllowlistedPackagePermissions of SettingsSliceProvider.java, there is a possible way for a third party app to modify secure settings due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"spl": "2025-12-01",
"vanir_signatures": [
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/485b59a37c1cd0af72ca706e0ba1094f4e7fef0e",
"id": "ASB-A-388034510-5757e64d",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"50106679846436615822374728894374984304",
"229825262220412612820677354839580172386",
"311886980576882012010374149512511320064",
"48544362104597200007733116739088782425",
"105179436349869646742126366199619850760",
"256921340593620729377223939365767963172",
"261254536170170533476540753261503991841",
"207101672277775017992114209888768231617",
"213970397050033014654842109353659342371",
"114758549539174276213350107241829195300",
"300296499097850517971667631330745006548",
"82199412273698463418741514714604111008",
"6234694815685360159795471904530616151",
"5969958582457408012955453353550868383",
"58695271258377888311710284657170635643",
"27384927440121291248930449772535112087",
"297883719315040746639301297029983452007",
"19260387676987771876123003773844506343",
"65833516102516056319480934195640214854",
"11266063969547037008492015455371392898"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/485b59a37c1cd0af72ca706e0ba1094f4e7fef0e",
"id": "ASB-A-388034510-aa569684",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java",
"function": "grantAllowlistedPackagePermissions"
},
"digest": {
"function_hash": "38660714413508439988154678413708650725",
"length": 669.0
},
"deprecated": false
}
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/485b59a37c1cd0af72ca706e0ba1094f4e7fef0e"
],
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"spl": "2025-12-01",
"vanir_signatures": [
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c0413484999d7ae970954dd9da35ccec6863d59",
"id": "ASB-A-388034510-7d56c40b",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"50106679846436615822374728894374984304",
"229825262220412612820677354839580172386",
"311886980576882012010374149512511320064",
"48544362104597200007733116739088782425",
"105179436349869646742126366199619850760",
"256921340593620729377223939365767963172",
"261254536170170533476540753261503991841",
"207101672277775017992114209888768231617",
"213970397050033014654842109353659342371",
"114758549539174276213350107241829195300",
"300296499097850517971667631330745006548",
"82199412273698463418741514714604111008",
"6234694815685360159795471904530616151",
"5969958582457408012955453353550868383",
"58695271258377888311710284657170635643",
"27384927440121291248930449772535112087",
"297883719315040746639301297029983452007",
"19260387676987771876123003773844506343",
"65833516102516056319480934195640214854",
"11266063969547037008492015455371392898"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/4c0413484999d7ae970954dd9da35ccec6863d59",
"id": "ASB-A-388034510-ad1f855a",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java",
"function": "grantAllowlistedPackagePermissions"
},
"digest": {
"function_hash": "38660714413508439988154678413708650725",
"length": 669.0
},
"deprecated": false
}
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/4c0413484999d7ae970954dd9da35ccec6863d59"
],
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"spl": "2025-12-01",
"vanir_signatures": [
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/fc32bd01fa26a116c4217fec157be43f01633add",
"id": "ASB-A-388034510-230900e1",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"50106679846436615822374728894374984304",
"229825262220412612820677354839580172386",
"311886980576882012010374149512511320064",
"48544362104597200007733116739088782425",
"105179436349869646742126366199619850760",
"256921340593620729377223939365767963172",
"261254536170170533476540753261503991841",
"207101672277775017992114209888768231617",
"213970397050033014654842109353659342371",
"114758549539174276213350107241829195300",
"300296499097850517971667631330745006548",
"82199412273698463418741514714604111008",
"6234694815685360159795471904530616151",
"5969958582457408012955453353550868383",
"58695271258377888311710284657170635643",
"27384927440121291248930449772535112087",
"297883719315040746639301297029983452007",
"19260387676987771876123003773844506343",
"65833516102516056319480934195640214854",
"11266063969547037008492015455371392898"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/fc32bd01fa26a116c4217fec157be43f01633add",
"id": "ASB-A-388034510-429189c6",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java",
"function": "grantAllowlistedPackagePermissions"
},
"digest": {
"function_hash": "38660714413508439988154678413708650725",
"length": 669.0
},
"deprecated": false
}
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/fc32bd01fa26a116c4217fec157be43f01633add"
],
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"spl": "2025-12-01",
"vanir_signatures": [
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/6745bf249ad47eec3e2e861d48a7d8b4b30a7ac8",
"id": "ASB-A-388034510-6539ee4a",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"50106679846436615822374728894374984304",
"229825262220412612820677354839580172386",
"46503071765748805376538363816333841520",
"28119783336672664668189044429901133645",
"105179436349869646742126366199619850760",
"256921340593620729377223939365767963172",
"261254536170170533476540753261503991841",
"207101672277775017992114209888768231617",
"213970397050033014654842109353659342371",
"114758549539174276213350107241829195300",
"300296499097850517971667631330745006548",
"82199412273698463418741514714604111008",
"6234694815685360159795471904530616151",
"5969958582457408012955453353550868383",
"58695271258377888311710284657170635643",
"27384927440121291248930449772535112087",
"297883719315040746639301297029983452007",
"19260387676987771876123003773844506343",
"65833516102516056319480934195640214854",
"11266063969547037008492015455371392898"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/6745bf249ad47eec3e2e861d48a7d8b4b30a7ac8",
"id": "ASB-A-388034510-ac486f39",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java",
"function": "grantAllowlistedPackagePermissions"
},
"digest": {
"function_hash": "38660714413508439988154678413708650725",
"length": 669.0
},
"deprecated": false
}
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/6745bf249ad47eec3e2e861d48a7d8b4b30a7ac8"
],
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"spl": "2025-12-01",
"vanir_signatures": [
{
"signature_type": "Line",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/d87aa9d7dec7554b09bc3740d54db2055ee6e12f",
"id": "ASB-A-388034510-94dcbeec",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"50106679846436615822374728894374984304",
"229825262220412612820677354839580172386",
"46503071765748805376538363816333841520",
"28119783336672664668189044429901133645",
"105179436349869646742126366199619850760",
"256921340593620729377223939365767963172",
"261254536170170533476540753261503991841",
"207101672277775017992114209888768231617",
"213970397050033014654842109353659342371",
"114758549539174276213350107241829195300",
"300296499097850517971667631330745006548",
"82199412273698463418741514714604111008",
"6234694815685360159795471904530616151",
"5969958582457408012955453353550868383",
"58695271258377888311710284657170635643",
"27384927440121291248930449772535112087",
"297883719315040746639301297029983452007",
"19260387676987771876123003773844506343",
"65833516102516056319480934195640214854",
"11266063969547037008492015455371392898"
]
},
"deprecated": false
},
{
"signature_type": "Function",
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/d87aa9d7dec7554b09bc3740d54db2055ee6e12f",
"id": "ASB-A-388034510-e0db62de",
"signature_version": "v1",
"target": {
"file": "src/com/android/settings/slices/SettingsSliceProvider.java",
"function": "grantAllowlistedPackagePermissions"
},
"digest": {
"function_hash": "38660714413508439988154678413708650725",
"length": 669.0
},
"deprecated": false
}
],
"severity": "High",
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/d87aa9d7dec7554b09bc3740d54db2055ee6e12f"
],
"types": [
"EoP"
]
}