CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-48631

In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Exploit prediction scoring system (EPSS) score

CVSS Severity

CVSS v3 Score 7.5

References

https://android.googlesource.com/platform/frameworks/base/+/d6df825fda3aa29cff7af05357005322152210fd
https://source.android.com/security/bulletin/2025-12-01

Products affected by CVE-2025-48631

Google » Android » Version: 13.0

cpe:2.3:o:google:android:13.0
Google » Android » Version: 14.0

cpe:2.3:o:google:android:14.0
Google » Android » Version: 15.0

cpe:2.3:o:google:android:15.0
Google » Android » Version: 16.0

cpe:2.3:o:google:android:16.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-48631

Products

Pricing

Contact Us