CVE-2025-48568
Published: 02 March 2026
Summary
CVE-2025-48568 is a high-severity Race Condition (CWE-362) vulnerability in Google Android. Its CVSS base score is 7.4 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 0.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-11 (Device Lock) and AC-3 (Access Enforcement).
Deeper analysis
CVE-2025-48568 is a race condition vulnerability (CWE-362) present in multiple locations within Android, enabling a possible lockscreen bypass. This flaw could lead to local escalation of privilege without requiring additional execution privileges or user interaction. Published on 2026-03-02, it carries a CVSS v3.1 base score of 7.4 (AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H), indicating high confidentiality, integrity, and availability impacts.
A local attacker with no privileges can exploit this vulnerability due to the race condition, bypassing the lockscreen to achieve escalation of privilege on the device. Exploitation is feasible without user interaction but demands high attack complexity, limiting it to adversaries with local access, such as through physical device possession or prior low-privilege code execution.
The Android security bulletin at https://source.android.com/docs/security/bulletin/2026/2026-03-01 details patches and mitigation recommendations for affected Android versions.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-208199
Vulnerability details
In multiple locations, there is a possible lockscreen bypass due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Race condition enables local privilege escalation via lockscreen bypass, directly mapping to exploitation of a software vulnerability for unauthorized elevation.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly implements device lockscreen mechanisms whose bypass via race condition is the root cause of this CVE.
Enforces access-control decisions on the lockscreen; a race-condition flaw allows those decisions to be circumvented.
Process isolation reduces the shared-state windows that enable the race condition exploited to bypass the lockscreen.