CVE-2025-48543

HIGH KEV

Chrome - Use After Free

Title source: llm

Description

In multiple locations, there is a possible way to escape chrome sandbox to attack android system_server due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Exploits (2)

nomisec WORKING POC 48 stars

by gamesarchive · local

https://github.com/gamesarchive/CVE-2025-48543

View Code ZIP pw:eip

github WORKING POC 2 stars

by adminlove520 · pythonpoc

https://github.com/adminlove520/CVE-Poc_All_in_One/tree/main/2025/CVE-2025-48543

View Code ZIP pw:eip

References (3)

[Patch, Product] https://android.googlesource.com/platform/art/+/444fc40dfb04d2ec5f74c443ed3a4dd45d3131f2

[Vendor Advisory] https://source.android.com/security/bulletin/2025-09-01

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48543

Scores

CVSS v3 8.8

EPSS 0.0031

EPSS Percentile 54.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

CISA KEV 2025-09-04

VulnCheck KEV 2025-09-01

ENISA EUVD EUVD-2025-26791

CWE

CWE-416

Status published

Products (4)

google/android 13.0

google/android 14.0

google/android 15.0

google/android 16.0

Published Sep 04, 2025

KEV Added Sep 04, 2025

Tracked Since Feb 18, 2026