CVE-2025-9675

Опубликовано: 29 авг. 2025

Источник: nvd

CVSS3: 5.3

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

A vulnerability was determined in Voice Changer App up to 1.1.0. This issue affects some unknown processing of the file AndroidManifest.xml of the component com.tuyangkeji.changevoice. Executing manipulation can lead to improper export of android application components. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized.

Ссылки

https://github.com/KMov-g/androidapps/blob/main/com.tuyangkeji.changevoice.md
Exploit
Mitigation
Third Party Advisory
https://github.com/KMov-g/androidapps/blob/main/com.tuyangkeji.changevoice.md#steps-to-reproduce
Exploit
Mitigation
Third Party Advisory
https://vuldb.com/?ctiid.321887
Permissions Required
VDB Entry
https://vuldb.com/?id.321887
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.638073
Third Party Advisory
VDB Entry
https://github.com/KMov-g/androidapps/blob/main/com.tuyangkeji.changevoice.md
Exploit
Mitigation
Third Party Advisory
https://github.com/KMov-g/androidapps/blob/main/com.tuyangkeji.changevoice.md#steps-to-reproduce
Exploit
Mitigation
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:voice_changer_project:voice_changer:*:*:*:*:*:android:*:*

Версия до 1.1.0 (включая)

cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

Версия до 11.0 (исключая)

EPSS

Процентиль: 8%

0.00031

Низкий

5.3 Medium

CVSS3

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-926

NVD-CWE-noinfo

Связанные уязвимости

GHSA-2362-q4mw-x664

CVSS3: 5.3

github

4 месяца назад

EPSS

Процентиль: 8%

0.00031

Низкий

5.3 Medium

CVSS3

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-926

NVD-CWE-noinfo