Resource Exhaustion Vulnerability in Android Devices by Google
CVE-2025-48569

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-48569?

A resource exhaustion vulnerability has been identified in multiple areas of the Android operating system, which could result in a local denial of service. This flaw allows an attacker to potentially consume system resources, leading to a situation where the device becomes unresponsive. Exploitation of this vulnerability does not require elevated permissions, nor does it require any user interaction, making it a significant concern for Android users and administrators.

Affected Version(s)

Android 16-qpr2

References

https://source.android.com/security/bulletin/android-16-qpr2

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
May 22, 2025

JSON