ASB-A-389127608
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-389127608.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-389127608
- Aliases
-
- A-389127608
- CVE-2025-32330
- Published
- 2025-09-01T00:00:00Z
- Modified
- 2025-10-27T15:26:11.562129Z
- Summary
- [none]
- Details
-
In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2025-09-01",
"severity": "High",
"vanir_signatures": [
{
"id": "ASB-A-389127608-54132215",
"deprecated": false,
"digest": {
"length": 148.0,
"function_hash": "212948637122737102711828250718641710839"
},
"signature_version": "v1",
"target": {
"function": "generateRandomPassword",
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/1c8a53c86fae7931a2247de5b90028d0489e7ec3",
"signature_type": "Function"
},
{
"id": "ASB-A-389127608-77f09b2f",
"deprecated": false,
"digest": {
"length": 182.0,
"function_hash": "3728088176980917406048684280432508738"
},
"signature_version": "v1",
"target": {
"function": "generateRandomPassword",
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/c2efba676eb50e71a6f45d4b68d9d78b42885a93",
"signature_type": "Function"
},
{
"id": "ASB-A-389127608-a2ce6a8a",
"deprecated": false,
"digest": {
"line_hashes": [
"31947613612048969251822736620304677318",
"148908151109614225877863524226289827666",
"80698148877458253664259424980707135441",
"258198954022708806632913780685041723607"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/1c8a53c86fae7931a2247de5b90028d0489e7ec3",
"signature_type": "Line"
},
{
"id": "ASB-A-389127608-c97adce3",
"deprecated": false,
"digest": {
"line_hashes": [
"75224137621835308998748026294576003686",
"99539564340656974244461242351024446571",
"194105453197206288667652812254098340255",
"296995939675633765772067585777997255764",
"328622450135112313321431282660672597843",
"264874830524580729577537075896819863318",
"233422010490346329333833280253094976558",
"209473620427121150496080974423368804811",
"193519512485723411635018273782978649682",
"55374327692054345221394533283928545513",
"173072213903924741847497593937946967574",
"140558043383308271560144190490721062264",
"174252456758869932371572764300863778923",
"318170311184554425779878449477536622425",
"262320534439693471961554527797926818718",
"76795714488345325744742957898451624415",
"108186147589310544728765807418845974460",
"29971573860126083463610291165267579695",
"180105510782616936064788393540740159069",
"336096961472517516193277631138155543412",
"242482197712002858425485360099600476477",
"314686659823100318687059338536070439960"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/c2efba676eb50e71a6f45d4b68d9d78b42885a93",
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/1c8a53c86fae7931a2247de5b90028d0489e7ec3",
"https://android.googlesource.com/platform/frameworks/base/+/c2efba676eb50e71a6f45d4b68d9d78b42885a93"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2025-09-01",
"severity": "High",
"vanir_signatures": [
{
"id": "ASB-A-389127608-d94c76d6",
"deprecated": false,
"digest": {
"line_hashes": [
"75224137621835308998748026294576003686",
"99539564340656974244461242351024446571",
"194105453197206288667652812254098340255",
"296995939675633765772067585777997255764",
"338701926425752560217357339156192238642",
"146796369277322920843048549314750762069",
"318170311184554425779878449477536622425",
"262320534439693471961554527797926818718",
"108186147589310544728765807418845974460",
"31947613612048969251822736620304677318",
"148908151109614225877863524226289827666",
"80698148877458253664259424980707135441",
"258198954022708806632913780685041723607"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/a794c32c13d2835ce5065f97fd2d76721c42fba1",
"signature_type": "Line"
},
{
"id": "ASB-A-389127608-e5297ef4",
"deprecated": false,
"digest": {
"length": 148.0,
"function_hash": "212948637122737102711828250718641710839"
},
"signature_version": "v1",
"target": {
"function": "generateRandomPassword",
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/a794c32c13d2835ce5065f97fd2d76721c42fba1",
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/a794c32c13d2835ce5065f97fd2d76721c42fba1"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2025-09-01",
"severity": "High",
"vanir_signatures": [
{
"id": "ASB-A-389127608-3a1d17bc",
"deprecated": false,
"digest": {
"length": 148.0,
"function_hash": "212948637122737102711828250718641710839"
},
"signature_version": "v1",
"target": {
"function": "generateRandomPassword",
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/365ea4e1ee836d5cad08b611eed235fc92145a08",
"signature_type": "Function"
},
{
"id": "ASB-A-389127608-fa70e4d3",
"deprecated": false,
"digest": {
"line_hashes": [
"129442135851039932853589348968074442781",
"321823611524003574292488155636212893303",
"62791525669755229540099807461680650116",
"72262270920768769658983136620388815636",
"239430651597701978426705284296189296563",
"93288974758504315847042149285812339995",
"127898589278794079460725018887158386444",
"283337242917088813104586804017952397811",
"257896654554468617820358118432295962062",
"151913309658368471443237178200168014171",
"130352510045624650577326705801337629520",
"145678472388105627841518123952520209957",
"76795714488345325744742957898451624415",
"108186147589310544728765807418845974460",
"31947613612048969251822736620304677318",
"148908151109614225877863524226289827666",
"93979118865191613340843219397023416759"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/365ea4e1ee836d5cad08b611eed235fc92145a08",
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/365ea4e1ee836d5cad08b611eed235fc92145a08"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2025-09-01",
"severity": "High",
"vanir_signatures": [
{
"id": "ASB-A-389127608-be4bce59",
"deprecated": false,
"digest": {
"length": 148.0,
"function_hash": "212948637122737102711828250718641710839"
},
"signature_version": "v1",
"target": {
"function": "generateRandomPassword",
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/365ea4e1ee836d5cad08b611eed235fc92145a08",
"signature_type": "Function"
},
{
"id": "ASB-A-389127608-c764d1dd",
"deprecated": false,
"digest": {
"line_hashes": [
"129442135851039932853589348968074442781",
"321823611524003574292488155636212893303",
"62791525669755229540099807461680650116",
"72262270920768769658983136620388815636",
"239430651597701978426705284296189296563",
"93288974758504315847042149285812339995",
"127898589278794079460725018887158386444",
"283337242917088813104586804017952397811",
"257896654554468617820358118432295962062",
"151913309658368471443237178200168014171",
"130352510045624650577326705801337629520",
"145678472388105627841518123952520209957",
"76795714488345325744742957898451624415",
"108186147589310544728765807418845974460",
"31947613612048969251822736620304677318",
"148908151109614225877863524226289827666",
"93979118865191613340843219397023416759"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "packages/SettingsLib/src/com/android/settingslib/bluetooth/LocalBluetoothLeBroadcast.java"
},
"source": "https://android.googlesource.com/platform/frameworks/base/+/365ea4e1ee836d5cad08b611eed235fc92145a08",
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/365ea4e1ee836d5cad08b611eed235fc92145a08"
]
}