CVE CyberSecurity Database News (Page 32)

Sep 3, 2025 Google Chrome

CVE-2025-9867 - Unpacking the Chrome Android Downloads UI Spoofing Vulnerability

In early 2025, security researchers identified a new vulnerability in Google Chrome for Android—CVE-2025-9867. This one slipped into the spotlight via an "inappropriate

Sep 3, 2025 Exploit Google Chrome

CVE-2025-9865 - Domain Spoofing via Toolbar UI in Google Chrome for Android (Explained with Exploit Walkthrough)

In early 2025, Google Chrome’s security team reported CVE-2025-9865, a vulnerability found in the Toolbar implementation on Android devices. This medium-severity flaw affected versions

Sep 2, 2025 Google

CVE-2025-22442 - Race Condition in DevicePolicyManagerService.java Allows Installing Unauthorized Apps in Work Profiles

Published: June 2024 Severity: High Component: Android DevicePolicyManagerService Exploitability: Local, no user interaction Introduction In early 2024, a critical vulnerability identified as CVE-2025-22442 was discovered

Sep 2, 2025 Google

CVE-2025-22438 - Exploiting a Use-After-Free Vulnerability in Android’s InputDispatcher.cpp

Summary: CVE-2025-22438 is a critical use-after-free vulnerability in the Android framework, specifically in the InputDispatcher.cpp file. Attackers exploiting this flaw can potentially escalate their

Sep 2, 2025

CVE-2025-22439 - Bypassing Storage Restrictions via onLastAccessedStackLoaded in ActionHandler.java

A new Android security vulnerability, CVE-2025-22439, has drawn serious attention due to its potential to let apps bypass storage access restrictions. The flaw stems from