CVE-2025-48636

2026-03-02 19:2CVE-2025-48636google_android

PUBLISHED5.2

In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Problem type

Elevation of privilege

Affected products

Google

Android

16 - AFFECTED

References

source.android.com

https://source.android.com/security/bulletin/wear/2026-03-01

GitHub Security Advisories

GHSA-fvxj-j7ff-jw68

In openFile of BugreportContentProvider.java, there is a possible way to read and write...

https://github.com/advisories/GHSA-fvxj-j7ff-jw68

nvd.nist.gov

https://nvd.nist.gov/vuln/detail/CVE-2025-48636

source.android.com

https://source.android.com/security/bulletin/wear/2026-03-01

github.com

https://github.com/advisories/GHSA-fvxj-j7ff-jw68

JSON source

https://cveawg.mitre.org/api/cve/CVE-2025-48636

Click to expand

{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2025-48636",
    "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
    "assignerShortName": "google_android",
    "dateUpdated": "2026-03-02T19:34:32.812Z",
    "dateReserved": "2025-05-22T18:12:39.229Z",
    "datePublished": "2026-03-02T19:02:51.909Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
        "shortName": "google_android",
        "dateUpdated": "2026-03-02T19:02:51.909Z"
      },
      "descriptions": [
        {
          "lang": "en",
          "value": "In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
        }
      ],
      "affected": [
        {
          "vendor": "Google",
          "product": "Android",
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "16",
              "status": "affected"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "Elevation of privilege"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://source.android.com/security/bulletin/wear/2026-03-01"
        }
      ]
    },
    "adp": [
      {
        "providerMetadata": {
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP",
          "dateUpdated": "2026-03-02T19:34:32.812Z"
        },
        "title": "CISA ADP Vulnrichment",
        "problemTypes": [
          {
            "descriptions": [
              {
                "lang": "en",
                "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
                "cweId": "CWE-22",
                "type": "CWE"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "version": "3.1",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "attackVector": "LOCAL",
              "attackComplexity": "LOW",
              "privilegesRequired": "NONE",
              "userInteraction": "NONE",
              "scope": "UNCHANGED",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "availabilityImpact": "HIGH",
              "baseScore": 8.4,
              "baseSeverity": "HIGH"
            }
          },
          {}
        ]
      }
    ]
  }
}