Home / Vulnerability Intelligence / CVE-2025-48602

CVE-2025-48602 - Vulnerability Analysis

HighCVSS: 8.4

Last Updated: March 3, 2026

Android KeyguardViewMediator - Authentication Bypass

Published: March 2, 2026Updated: March 3, 2026

Overview

Android KeyguardViewMediator contains a lockscreen bypass caused by a logic error in exitKeyguardAndFinishSurfaceBehindRemoteAnimation, letting local attackers escalate privileges without additional execution rights, exploit requires no user interaction.

Severity & Score

Severity: High

CVSS Score: 8.4

EPSS Score: 0.7%(Probability of exploitation in next 30 days)

Impact

Local attackers can bypass the lockscreen to escalate privileges without needing extra execution rights.

Mitigation

Update to the latest Android version with the fix.

References

https://source.android.com/security/bulletin/2026-03-01

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 3, 2026

🟠 CVE-2025-48602 - High (8.4) In exitKeyguardAndFinishSurfaceBehindRemoteAnimation of KeyguardViewMediator.java, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges nee... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-48602/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2025-48602
Severity: High
CVSS Score: 8.4
Type: broken_access_control
Status: confirmed
EPSS: 0.7%
Social Posts: 1

CWE

CWE-693

CVSS Metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.7%Probability of exploitation in the next 30 days