ASB-A-418773283
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-418773283.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-418773283
- Aliases
-
- A-418773283
- CVE-2025-48522
- Published
- 2025-09-01T00:00:00Z
- Modified
- 2026-03-14T08:46:07.831022Z
- Summary
- [none]
- Details
-
In setDisplayName of AssociationRequest.java, there is a possible way for an app to retain CDM association due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android
platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"types": [
"EoP"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/dfcbd34e7f03a8b96703ff6597cb2632c5c8d9bf"
],
"spl": "2025-09-01",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/dfcbd34e7f03a8b96703ff6597cb2632c5c8d9bf",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-80ada0a5",
"digest": {
"length": 109.0,
"function_hash": "131242640319249840870459432381464476378"
},
"signature_type": "Function",
"target": {
"file": "core/java/android/companion/AssociationRequest.java",
"function": "setDisplayName"
}
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/dfcbd34e7f03a8b96703ff6597cb2632c5c8d9bf",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-c8929c7f",
"digest": {
"threshold": 0.9,
"line_hashes": [
"269440801812699585152712414328242547405",
"330366624732347292350881135963890224103",
"69159395343701757787123535336040608901",
"68152038822025007295096070680134140672",
"27497242389120439899131387549726078270",
"269559521383832928557216591421670336542",
"219199137087090509060771178972907945050"
]
},
"signature_type": "Line",
"target": {
"file": "core/java/android/companion/AssociationRequest.java"
}
}
],
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"types": [
"EoP"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/b73847cdfeb6acbb21b70fc979c9c8cb6038bcfb"
],
"spl": "2025-09-01",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/b73847cdfeb6acbb21b70fc979c9c8cb6038bcfb",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-a4cd565c",
"digest": {
"length": 109.0,
"function_hash": "131242640319249840870459432381464476378"
},
"signature_type": "Function",
"target": {
"file": "core/java/android/companion/AssociationRequest.java",
"function": "setDisplayName"
}
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/b73847cdfeb6acbb21b70fc979c9c8cb6038bcfb",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-cba41346",
"digest": {
"threshold": 0.9,
"line_hashes": [
"147269419953227440488681118598688817780",
"52548465390990484745093659737434703888",
"25730624046464827620604150295925541558",
"68152038822025007295096070680134140672",
"27497242389120439899131387549726078270",
"269559521383832928557216591421670336542",
"219199137087090509060771178972907945050"
]
},
"signature_type": "Line",
"target": {
"file": "core/java/android/companion/AssociationRequest.java"
}
}
],
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"types": [
"EoP"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/4234c17b14d65c4cea54c9a4ff119029595e9867"
],
"spl": "2025-09-01",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/4234c17b14d65c4cea54c9a4ff119029595e9867",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-25a38058",
"digest": {
"threshold": 0.9,
"line_hashes": [
"167141864808449554181499016020616283956",
"16081820404547247029385266116351825668",
"216724245081984099851929058632594725358",
"68152038822025007295096070680134140672",
"27497242389120439899131387549726078270",
"269559521383832928557216591421670336542",
"219199137087090509060771178972907945050"
]
},
"signature_type": "Line",
"target": {
"file": "core/java/android/companion/AssociationRequest.java"
}
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/4234c17b14d65c4cea54c9a4ff119029595e9867",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-8605b3b9",
"digest": {
"length": 109.0,
"function_hash": "131242640319249840870459432381464476378"
},
"signature_type": "Function",
"target": {
"file": "core/java/android/companion/AssociationRequest.java",
"function": "setDisplayName"
}
}
],
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"types": [
"EoP"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/bf97b0b070dc2239b556ea7726c20957f4140129"
],
"spl": "2025-09-01",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/bf97b0b070dc2239b556ea7726c20957f4140129",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-18389b78",
"digest": {
"threshold": 0.9,
"line_hashes": [
"68152038822025007295096070680134140672",
"27497242389120439899131387549726078270",
"269559521383832928557216591421670336542",
"219199137087090509060771178972907945050"
]
},
"signature_type": "Line",
"target": {
"file": "core/java/android/companion/AssociationRequest.java"
}
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/bf97b0b070dc2239b556ea7726c20957f4140129",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-1f6ac4aa",
"digest": {
"length": 109.0,
"function_hash": "131242640319249840870459432381464476378"
},
"signature_type": "Function",
"target": {
"file": "core/java/android/companion/AssociationRequest.java",
"function": "setDisplayName"
}
}
],
"severity": "High"
}platform/frameworks/base
Package
- Name
- platform/frameworks/base
Ecosystem specific
{
"types": [
"EoP"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/c770b9ef1fcb471aa6e24d6ffbcf61cda61363b7"
],
"spl": "2025-09-01",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/c770b9ef1fcb471aa6e24d6ffbcf61cda61363b7",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-0c576ff9",
"digest": {
"threshold": 0.9,
"line_hashes": [
"68152038822025007295096070680134140672",
"27497242389120439899131387549726078270",
"269559521383832928557216591421670336542",
"219199137087090509060771178972907945050"
]
},
"signature_type": "Line",
"target": {
"file": "core/java/android/companion/AssociationRequest.java"
}
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/c770b9ef1fcb471aa6e24d6ffbcf61cda61363b7",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-418773283-ec77d9eb",
"digest": {
"length": 109.0,
"function_hash": "131242640319249840870459432381464476378"
},
"signature_type": "Function",
"target": {
"file": "core/java/android/companion/AssociationRequest.java",
"function": "setDisplayName"
}
}
],
"severity": "High"
}