Tapjacking Vulnerability in Android Framework
CVE-2025-0080

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 26 August 2025

What is CVE-2025-0080?

A security vulnerability has been identified within the Android Framework, where an attacker could potentially overlay the installation confirmation dialog through a tapjacking technique. This exploit allows for local escalation of privileges without requiring additional execution permissions or user interaction. This vulnerability could compromise the security of user data and system integrity.

Affected Version(s)

Android 15

References

https://android.googlesource.com/platform/frameworks/base...

https://source.android.com/security/bulletin/2025-03-01

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 26, 2025
Vulnerability Reserved
Dec 13, 2024

Google

What is CVE-2025-0080?

Affected Version(s)

References

Timeline