All CVEs
Vulnerability intelligence

CVE-2025-48595

Android Framework

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS Score
8.4
High
EPSS — Exploit Probability
1.7%
Riskier than 75% of all CVEs
Exploitation
Confirmed in the wild
KEV since 2026-06-02
Remediation
Patch available
Federal deadline 2026-06-05
NVD entry Vendor patch PoC / advisory CISA KEV

10 articles across 6 outlets · first covered Jun 2, 2026 · latest Jun 3, 2026

Tracked incidents

Coverage timeline