CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22412
https://notcve.org/view.php?id=CVE-2025-22412
26 Aug 2025 — In multiple functions of sdp_server.cc, there is a possible use after free due to a logic error in the code. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22411
https://notcve.org/view.php?id=CVE-2025-22411
26 Aug 2025 — In process_service_attr_rsp of sdp_discovery.cc, there is a possible use after free due to a logic error in the code. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22410
https://notcve.org/view.php?id=CVE-2025-22410
26 Aug 2025 — In multiple locations, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22409
https://notcve.org/view.php?id=CVE-2025-22409
26 Aug 2025 — In rfc_send_buf_uih of rfc_ts_frames.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22408
https://notcve.org/view.php?id=CVE-2025-22408
26 Aug 2025 — In rfc_check_send_cmd of rfc_utils.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 7.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22407
https://notcve.org/view.php?id=CVE-2025-22407
26 Aug 2025 — In hidd_check_config_done of hidd_conn.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22405
https://notcve.org/view.php?id=CVE-2025-22405
26 Aug 2025 — In multiple locations, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22404
https://notcve.org/view.php?id=CVE-2025-22404
26 Aug 2025 — In avct_lcb_msg_ind of avct_lcb_act.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/806774b1cf641e0c0e7df8024e327febf23d7d7c •
CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-22403
https://notcve.org/view.php?id=CVE-2025-22403
26 Aug 2025 — In sdp_snd_service_search_req of sdp_discovery.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/37bcf769c1aa8dfa8e5524858d47f6a80b765fa4 •
CVSS: 9.8EPSS: %CPEs: 3EXPL: 0CVE-2025-0084
https://notcve.org/view.php?id=CVE-2025-0084
26 Aug 2025 — This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/94c565214e3496fbaade9efed8be41d6425ba21e •