SMS Message Interception Vulnerability in Android Products
CVE-2025-48571

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 17 June 2026

What is CVE-2025-48571?

A vulnerability exists in the btm_sec.cc component of Android where a logic error may allow an attacker to intercept SMS messages. This flaw could lead to remote information disclosure without requiring additional execution privileges. Exploitation of this vulnerability necessitates user interaction, making it critical for users to remain vigilant against potential threats.

Affected Version(s)

Android 17

References

https://source.android.com/docs/security/bulletin/android-17

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 17, 2026
Vulnerability Reserved
May 22, 2025

CVE-2025-48571 Data

JSON

Google

What is CVE-2025-48571?

Affected Version(s)

References

Timeline