Primary

Context

Android AccountManagerService Resource Exhaustion Vulnerability Leading to Denial-of-Service

Vulnerability

A denial-of-service vulnerability has been identified in the AccountManagerService component of the Android framework. This issue arises from resource exhaustion in multiple functions of AccountManagerService.java, which can cause a permanent denial of service. The vulnerability can be exploited locally, without the need for additional execution privileges or user interaction.

Impact

Exploitation of this vulnerability leads to a local denial-of-service condition, causing resource exhaustion that can disrupt normal service operations.

Remediation

Users can update their devices to the September 2025 security patch level to address this vulnerability.

Added: Sep 4, 2025, 7:22 PM

Updated: Sep 4, 2025, 8:41 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.5

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.5

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android AccountManagerService Resource Exhaustion Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating