VDB

GCVE-110-NCSC-2025-72

GCVE-110-NCSC-2025-72
Advisory PublishedCVSS 5.5/10
Vulnetix · Advisory published March 4, 2025
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Weaknesses (CWE)

CWE-190Integer Overflow or WraparoundCWE-285Improper AuthorizationCWE-193Off-by-one ErrorCWE-129Improper Validation of Array IndexCWE-126Buffer Over-readCWE-665Improper InitializationCWE-264-CWE-476NULL Pointer DereferenceCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')CWE-1286Improper Validation of Syntactic Correctness of InputCWE-787Out-of-bounds Write

Risk Scores

CVSS 3.1
5.5/10
Medium · CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersionsPlatforms
Androidvers:android/12l
Androidvers:android/15
Samsungvers:unknown/unknown
Androidvers:android/12
Androidvers:android/14
Androidvers:android/13
Samsungvers:unknown/*

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,443 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›