What is the CVSS score of EUVD-2025-210013?

EUVD-2025-210013 has a CVSS 3.1 base score of 8.4 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Google Android are affected by EUVD-2025-210013?

Google Android devices running versions 14 through 16-qpr2 are vulnerable to a local privilege escalation attack enabling complete device control for attackers with device access; no public exploit…

Is there a public PoC exploit available for EUVD-2025-210013?

Yes, a public proof-of-concept exploit is available for EUVD-2025-210013. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate EUVD-2025-210013?

Within 24 hours: Audit enterprise inventory to identify all devices running Android 14, 15, 16, or 16-qpr2; assess exposure of identified devices in high-risk contexts (administrative access, corporate data access). Within 7 days: Enforce SELinux in enforcing mode via MDM; restrict sideloading and third-party app installation; deploy monitoring for privilege escalation attempts. Within 30 days: Subscribe to Android Security Bulletin for CVE-2025-48595 patch announcements; develop rapid patch deployment procedure; evaluate device replacement options if patches remain unavailable.

Google Android EUVD-2025-210013

| CVE-2025-48595 HIGH

Integer Overflow or Wraparound (CWE-190)

2026-06-01 google_android

GHSA-2mvq-m5m5-v7m7

Privilege Escalation RCE Integer Overflow

8.4

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.4 HIGH

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Added to CISA KEV

Jun 02, 2026 - 18:01 CISA

Analysis Generated

Jun 02, 2026 - 00:20 vuln.today

CVSS changed

Jun 01, 2026 - 23:22 NVD

8.4 (None) 8.4 (HIGH)

CVE Published

Jun 01, 2026 - 21:14 nvd

HIGH 8.4

CVE Published

Jun 01, 2026 - 21:14 nvd

UNKNOWN (no severity yet)

DescriptionCVE.org

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

AnalysisAI

Local privilege escalation in Google Android (versions 14, 15, 16, and 16-qpr2) stems from an integer overflow (CWE-190) that can be triggered without user interaction to achieve code execution. With CVSS 8.4 and SSVC technical impact rated 'total,' a local attacker on the device can elevate privileges across security boundaries without additional execution rights. No public exploit identified at time of analysis and SSVC reports exploitation status as 'none.'

Technical ContextAI

The flaw is an integer overflow (CWE-190) affecting Android per CPE cpe:2.3:a:google:android, reported in multiple code locations within the Android platform. Integer overflows typically arise when an arithmetic operation produces a value outside the representable range of the integer type, leading to undersized buffer allocations, incorrect length checks, or out-of-bounds memory operations - any of which can be leveraged into memory corruption and subsequent code execution. Because Android relies on layered sandboxing (app UID isolation, SELinux, Mainline modules), an overflow that enables code execution in a privileged process can break out of an application sandbox into a higher-privilege context.

RemediationAI

Apply the Android Security Bulletin updates referenced at https://source.android.com/docs/security/bulletin/2026/2026-06-01; devices should be updated to a security patch level of 2026-06-01 or later as published by Google and downstream OEMs. Exact fix versions were not enumerated in the provided data - patch available per vendor advisory. Until OEM/carrier updates are delivered, compensating controls include restricting app installs to Google Play with Play Protect enabled, blocking sideloading via MDM, prohibiting installation of untrusted APKs on managed fleets, and prioritizing patches on devices with sensitive data; the trade-off of MDM-based sideload restrictions is reduced flexibility for developers and power users.

EUVD-2025-210013 vulnerability details – vuln.today

Back

Google Android EUVD-2025-210013

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code