VYPR
High severity7.8NVD Advisory· Published Jun 1, 2026· Updated Jun 2, 2026

CVE-2025-32348

CVE-2025-32348

Description

In multiple locations, there is a possible background activity launch due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Google/Android7 versions
    cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*
    • cpe:2.3:o:google:android:16.0:qpr2_beta_1:*:*:*:*:*:*
    • cpe:2.3:o:google:android:16.0:qpr2_beta_2:*:*:*:*:*:*
    • cpe:2.3:o:google:android:16.0:qpr2_beta_3:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

1