Primary

Context

Google Android Elevation of Privilege Vulnerability in gChip Component

Vulnerability

A use-after-free vulnerability in the gChip component of the Android OS kernel has been identified, leading to potential information disclosure. This vulnerability could allow local elevation of privilege, granting unauthorized access to system execution privileges. Exploitation does not require user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized access to elevated privileges within the operating system kernel, allowing a user to execute commands or access resources with higher permissions than normally granted.

Remediation

Users can update their devices to the December 2025 security patch level to address this vulnerability.

Added: Dec 11, 2025, 8:26 PM

Updated: Dec 11, 2025, 9:28 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.8

remediation

0.0

relevance

1.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.8

remediation

0.0

relevance

1.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Android Elevation of Privilege Vulnerability in gChip Component

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating