Privilege Escalation Vulnerability in Android Kernel
CVE-2025-22413

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 26 August 2025

What is CVE-2025-22413?

A logic error in various functions of the hyp-main.c file within the Android kernel introduces a vulnerability that permits privilege escalation. This flaw could allow a local attacker to disclose sensitive information without requiring any additional execution privileges or user interaction for exploitation. Awareness of this issue is crucial for maintaining the integrity of affected systems.

Affected Version(s)

Android Android kernel

References

https://android.googlesource.com/kernel/common/+/1a3366f0...

https://android.googlesource.com/kernel/common/+/add3d686...

https://source.android.com/security/bulletin/2025-03-01

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 26, 2025
Vulnerability Reserved
Jan 6, 2025

Google

What is CVE-2025-22413?

Affected Version(s)

References

Timeline