Primary

Context

Android Framework Elevation of Privilege Vulnerability in VPN Component

Vulnerability

A logic error in the VPN component of the Android Framework allows for a local elevation of privilege by disabling the always-on VPN feature. This vulnerability affects Android versions 13, 14, and 15. Exploitation does not require additional execution privileges or user interaction.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in VPN settings, potentially allowing for data leakage or interception by disabling always-on VPN protections.

Remediation

Users can update to the December 2025 security patch level to address this vulnerability. Instructions for checking and updating Android versions are available on the Google Support website.

Added: Dec 8, 2025, 5:49 PM

Updated: Dec 8, 2025, 9:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

1.3

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

1.3

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android Framework Elevation of Privilege Vulnerability in VPN Component

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating