Remote Code Execution Vulnerability in Bluetooth of Android Devices
CVE-2025-48593

8HIGH

Key Information:

Vendor

Google
Status
Android
Vendor
CVE Published:
18 November 2025

Badges

πŸ”₯ Trending nowπŸ“ˆ TrendedπŸ“ˆ Score: 1,190πŸ“° News Worthy

What is CVE-2025-48593?

CVE-2025-48593 is a notable vulnerability found in the Bluetooth functionality of Android devices, specifically within the code managing Bluetooth hands-free profiles. This vulnerability arises from a "use after free" condition in the Bluetooth stack, which can be exploited to execute arbitrary code on affected devices. Unauthorized parties could potentially trigger this vulnerability without requiring any user interaction, making it particularly dangerous. If successfully exploited, this could allow attackers to gain control over the device, compromising user data and the integrity of the operating system. Given the widespread use of Android in personal and enterprise environments, the impact on organizations could be substantial, necessitating prompt attention to security updates to mitigate the risk.

Potential impact of CVE-2025-48593

  1. Remote Code Execution: The primary risk associated with this vulnerability is the possibility for remote code execution, which allows malicious actors to run any code on affected Android devices. This could lead to unauthorized access to sensitive information, including personal data and corporate resources.

  2. Widespread Vulnerability: As Android is one of the most widely used operating systems globally, the potential for exploitation across numerous devices and users increases the severity of this vulnerability. Organizations with a large fleet of Android devices could face significant risks of compromise.

  3. System Integrity and Data Breaches: Successful exploitation could lead to a loss of integrity in the operating system, enabling attackers to manipulate or delete data at will. This not only jeopardizes personal information but could result in substantial financial and reputational damage for organizations reliant on secure and trustworthy mobile operations.

Affected Version(s)

Android 16

Android 15

Android 14

News Articles

favicon imageThe Logical Indian

CERT-In Issues High Alert for Millions of Android Users in India: Who’s at Risk and How to Stay Safe - The Logical Indian

CERT-In warns millions of Android users in India to update November 2025 security patches urgently to fix critical zero-click vulnerability.

favicon imageSOC Prime

CVE-2025-48593: Critical Zero-Click Vulnerability in Android Enables Remote Code Execution | SOC Prime

Explore CVE-2025-48593 analysis, a critical remote code execution vulnerability in Android, with the details on the SOC Prime blog.

favicon imageCyber Press

Critical Android 0-Click Vulnerability Enables Remote Code Execution

The vulnerability, tracked as CVE-2025-48593, represents a severe risk to Android devices worldwide and affects multiple versions of the operating system.

References

https://android.googlesource.com/platform/packages/module...
https://android.googlesource.com/platform/packages/module...
https://source.android.com/security/bulletin/2025-11-01

CVSS V3.1

Score:
8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • πŸ“ˆ

    Vulnerability started trending

  • Vulnerability published

  • πŸ“°

    First article discovered by Forbes

  • Vulnerability Reserved

JSON
.
CVE-2025-48593 : Remote Code Execution Vulnerability in Bluetooth of Android Devices