Arbitrary Code Execution Vulnerability in Android Bluetooth Service
CVE-2025-22403
Currently unrated
What is CVE-2025-22403?
A vulnerability exists in the Android Bluetooth service that allows for potential remote code execution due to a use after free condition in the 'sdp_snd_service_search_req' function. This flaw does not require additional execution privileges or user interaction for exploitation, making it particularly concerning for users and organizations relying on secure Bluetooth communications.
Affected Version(s)
Android 15