CVE CyberSecurity Database News (Page 63)

Sep 4, 2025 Exploit

CVE-2025-26442 - Exploiting Notification Listener Service Intent Filter Verification in Android (with Exploit Example)

In early 2025, security researchers publicly disclosed CVE-2025-26442, a logic error in Android’s NotificationAccessConfirmationActivity.java. This bug sits within the Notification Listener

Sep 4, 2025 API Java Google

CVE-2025-26440 - How a CameraService Permission Flaw Enables Background Camera Access on Android

In early 2025, a critical security vulnerability (CVE-2025-26440) was found in Android’s CameraService system component. This flaw lets unauthorized background apps silently

Sep 4, 2025 Bluetooth

CVE-2025-26438 - Remote Privilege Escalation in Bluetooth SMP Authentication Due to Protocol Flaw

The security community has recently uncovered a severe vulnerability, CVE-2025-26438, affecting the core Bluetooth stack in many Linux and Android devices. This flaw

Sep 4, 2025

CVE-2025-26436 - Exploiting Background Activity Launch (BAL) Bypass in Android’s clearAllowBgActivityStarts

CVE-2025-26436 is a critical Android vulnerability that allows apps to launch activities from the background without user interaction, bypassing security checks intended to

Sep 4, 2025

CVE-2025-26435 - Secondary User Can Disable Primary User's App Scanning on Android – Local Privilege Escalation Explained

--- In early 2025, security researchers uncovered a significant logic flaw in Android’s settings management, tracked as CVE-2025-26435. This vulnerability allows a secondary