Primary

Context

Android Telecomm Connection Service Wrapper Elevation of Privilege Vulnerability

Vulnerability

A logic error in the ConnectionServiceWrapper component of the Android Telecomm service can lead to a vulnerability allowing permissions to be retained indefinitely in the background. This issue could result in local elevation of privilege, with no additional execution privileges required. Exploitation of this vulnerability does necessitate user interaction.

Impact

Exploitation of this vulnerability allows for local elevation of privilege, enabling a user to gain unauthorized access to elevated permissions or privileges within the system.

Reproduction

The vulnerability can be reproduced by binding a connection service and not creating a connection or conference within 15 seconds. This delay allows the service to retain a permission indefinitely in the background, creating a potential for privilege escalation.

Remediation

Users can update their devices to the April 2025 security patch level to address this vulnerability.

Added: Sep 2, 2025, 11:30 PM

Updated: Sep 2, 2025, 11:30 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.3

remediation

0.0

relevance

0.5

threat

4.8

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

5.3

remediation

0.0

relevance

0.5

threat

4.8

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android Telecomm Connection Service Wrapper Elevation of Privilege Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating