AI description
CVE-2025-48539 is a critical vulnerability found in the System component of Android. It could lead to remote code execution (RCE) by a proximal or adjacent attacker. Exploitation does not require user interaction or additional execution privileges. The vulnerability is considered a severe risk because it could allow an attacker within a short distance to compromise a device, possibly through methods like Bluetooth, NFC, or Wi-Fi Direct. Google has released a security patch to address this vulnerability in the September 2025 Android Security Bulletin.
- Description
- In SendPacketToPeer of acl_arbiter.cc, there is a possible out of bounds read due to a use after free. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
- Source
- security@android.com
- NVD status
- Analyzed
- Products
- android
CVSS 3.1
- Type
- Secondary
- Base score
- 8
- Impact score
- 5.9
- Exploitability score
- 2.1
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-416
- Hype score
- Not currently trending
Tweet 1 🚨 Android Security Alert 🚨 A critical zero-click Remote Code Execution flaw is under active attack. CVE-2025-48539 (CVSS 9.8/10) → attackers can hijack Android devices via Wi-Fi or Bluetooth with no taps required. https://t.co/ouJZWho4By
@GunsandAntidote
5 Sept 2025
65 Impressions
0 Retweets
0 Likes
0 Bookmarks
3 Replies
0 Quotes
⚠️ Weekly vuln radar. https://t.co/Cd6L8ACyLV – spot what’s trending before it’s everywhere: CVE-2025-43300 CVE-2025-48539 CVE-2025-25257 (@0x_shaq) CVE-2025-7775 CVE-2025-57833 (@EyalSec) CVE-2025-53690 CVE-2025-9074 CVE-2025-48543 CVE-2025-24893 https://t.co/KW7HdtM3
@ptdbugs
5 Sept 2025
123 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical CVE-2025-48539 Android RCE allows an attacker within physical or network proximity, such as Bluetooth or WiFi range, to execute arbitrary code on the device without any user interaction or privileges https://t.co/T9wk1V2nV1 https://t.co/4NglLB8uNj #cybersecurity #cyber
@zeeshankghouri
5 Sept 2025
16 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-48539 In SendPacketToPeer of acl_arbiter.cc, there is a possible out of bounds read due to a use after free. This could lead to remote (proximal/adjacent) code execution wi… https://t.co/zvnv4puQDm
@CVEnew
4 Sept 2025
295 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Google released September Android fixes for 100+ flaws, including CVE-2025-48543 and CVE-2025-38352 under targeted exploitation. Critical CVE-2025-48539 allows adjacent RCE. Updates shipped for Pixel and Samsung; Motorola patched 48543 only.
@oxhak
4 Sept 2025
54 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
CVE-2025-48539 seems like an interesting bug! Android RCE over adjacent WiFi with no user interaction. https://t.co/5sXOFzCgel
@hkashfi
4 Sept 2025
24612 Impressions
60 Retweets
324 Likes
204 Bookmarks
5 Replies
1 Quote
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E"
},
{
"criteria": "cpe:2.3:o:google:android:16.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D49E611-5D53-479D-A981-42388FDC0E8D"
}
],
"operator": "OR"
}
]
}
]