CVE-2025-9675
BaseFortify
Publication date: 2025-08-29
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| voice_changer_project | voice_changer | to 1.1.0 (inc) |
| android | to 11.0 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-926 | The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains. |
| CWE-NVD-CWE-noinfo |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Voice Changer App up to version 1.1.0, specifically in the processing of the AndroidManifest.xml file within the component com.tuyangkeji.changevoice. Improper handling can lead to incorrect export of Android application components, which can be exploited locally.
How can this vulnerability impact me? :
The vulnerability can allow an attacker with local access to manipulate the app's AndroidManifest.xml file, potentially causing improper export of app components. This could lead to unauthorized access or actions within the app, impacting confidentiality, integrity, and availability of the app's functions or data.