CVE-2025-48552: 
NixOS vulnerability analysis and mitigation

CVE-2025-48552 is a local privilege escalation vulnerability discovered in Android's DevicePolicyManagerService.java component, specifically in the saveGlobalProxyLocked function. The vulnerability was disclosed on September 4, 2025, and affects multiple versions of the Android operating system including Android 13, 14, 15, and 16 (Android Bulletin).

The vulnerability stems from a logic error in the saveGlobalProxyLocked function of DevicePolicyManagerService.java, which can cause a desynchronization from persistence. The issue has been assigned a CVSS v3.1 base score of 7.8 (High), with a vector string of CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The scoring indicates local access is required, with low attack complexity and privilege requirements, and no user interaction needed for exploitation (NVD).

The vulnerability can lead to local privilege escalation on affected Android devices. If successfully exploited, it provides high impacts on confidentiality, integrity, and availability of the system, with no additional execution privileges needed for the initial exploitation (NVD).

Google has released patches for this vulnerability as part of the September 2025 Android Security Bulletin. Users of affected Android versions (13.0, 14.0, 15.0, and 16.0) should update their devices to the latest security patch level dated 2025-09-05 to protect against this vulnerability (Android Bulletin).