Home / Vulnerability Intelligence / CVE-2025-32313

CVE-2025-32313 - Vulnerability Analysis

HighCVSS: 8.4

Last Updated: March 2, 2026

UsageEvents - Privilege Escalation

Published: March 2, 2026Updated: March 2, 2026

Overview

UsageEvents in UsageEvents.java contains an out of bounds write caused by an incorrect bounds check, letting local attackers escalate privileges without additional execution rights, exploit requires no user interaction.

Severity & Score

Severity: High

CVSS Score: 8.4

Impact

Local attackers can escalate privileges without needing extra execution rights, potentially gaining unauthorized access.

Mitigation

Update to the latest version containing the fix.

References

https://source.android.com/security/bulletin/2026-03-01

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2025-32313
Severity: High
CVSS Score: 8.4
Type: out_of_bounds_rw
Status: unconfirmed

CWE

CWE-787

CVSS Metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H