Low severity2.7NVD Advisory· Published Jun 23, 2025· Updated Apr 15, 2026

CVE-2025-52926

Description

In scan.rs in spytrap-adb before 0.3.5, matches for known stalkerware are not rendered in the interactive user interface.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
spytrap-adbcrates.io	< 0.3.5	0.3.5

Patches

277cec542466

Fixed that hits stalkerware-rules were not being passed to TUI

https://github.com/spytrap-org/spytrap-adbsytctJun 21, 2025via ghsa

commit

1 file changed · +9 −0

src/scan.rs+9 −0 modified

@@ -104,6 +104,15 @@ pub async fn run(
                         pkg.id, name
                     );
                     warn!("Suspicious {:?}: {}", SuspicionLevel::High, alert);
+                    report
+                        .app(
+                            pkg.id.clone(),
+                            Suspicion {
+                                level: SuspicionLevel::High,
+                                description: alert,
+                            },
+                        )
+                        .await?;
                 }
 
                 // fetch infos about package

0bdce137f1bf

https://github.com/spytrap-org/spytrap-adbvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/advisories/GHSA-5p2p-6g2c-hf7mghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2025-52926ghsaADVISORY
github.com/spytrap-org/spytrap-adb/commit/277cec542466b75cf5a8c532581243fd4b7b9713nvdWEB
github.com/spytrap-org/spytrap-adb/pull/65nvdWEB
github.com/spytrap-org/spytrap-adb/releases/tag/v0.3.5nvdWEB

News mentions

No linked articles in our index yet.

cvss	0.176
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000