KULeuven-COSIC

1 exploit Active since Jan 2026
CVE-2025-36911 NOMISEC HIGH WORKING POC
Android - Unauthenticated Information Disclosure via Key-Based Pairing Logic Error
In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user's conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation.
39 stars
CVSS 7.1