How to fix CVE-2025-58475?

Within 30 days: Identify affected systems running libsec-ril.so and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

Is Android affected by CVE-2025-58475?

Organizations using libsec-ril.so should be aware of moderate risk from CVE-2025-58475 rated CVSS 5.6. Exploitation could compromise the security of affected deployments. Organizations should apply vendor updates when available and monitor for exploitation.

CVE-2025-58475

EUVD-2025-200143 MEDIUM

2025-12-02 [email protected]

5.6

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

Low

Lifecycle Timeline

Analysis Generated

Mar 15, 2026 - 14:04 vuln.today

EUVD ID Assigned

Mar 15, 2026 - 14:04 euvd

EUVD-2025-200143

CVE Published

Dec 02, 2025 - 02:15 nvd

MEDIUM 5.6

Description

Improper input validation in libsec-ril.so prior to SMR Dec-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

Analysis

A security vulnerability in libsec-ril.so (CVSS 5.6) that allows local privileged attackers. Remediation should follow standard vulnerability management procedures.

Technical Context

Vulnerability type not specified by vendor. Affects libsec-ril.so.

Affected Products

['libsec-ril.so']

Remediation

Monitor vendor channels for patch availability.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +28

POC: 0

CVE-2025-58475 vulnerability details – vuln.today

Back

CVE-2025-58475

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2025-58475

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code