exploitDog

CVE-2025-27389

Опубликовано: 05 дек. 2025

Источник: nvd

EPSS Низкий

Описание

A flaw exists in the verification of application installation sources within ColorOS. Under specific conditions, this issue may cause the risk detection mechanism to fail, which could allow malicious applications to be installed without proper warning.

Ссылки

https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1996493715665068032

EPSS

Процентиль: 4%

0.0002

Низкий

Дефекты

CWE-290

Связанные уязвимости

GHSA-gm7c-g54p-mxf6

github

2 месяца назад

A flaw exists in the verification of application installation sources within ColorOS. Under specific conditions, this issue may cause the risk detection mechanism to fail, which could allow malicious applications to be installed without proper warning.

EPSS

Процентиль: 4%

0.0002

Низкий

Дефекты

CWE-290