CVE-2025-25758

An issue in KukuFM Android v1.12.7 (11207) allows attackers to access sensitive cleartext data via the android:allowBackup="true" in the ANdroidManifest.xml

CVSS

No CVSS.

References

Link	Resource
https://pastebin.com/0cb0KsGS	Exploit
https://pastebin.com/0cb0KsGS	Exploit

Configurations

Configuration 1 (hide)

cpe:2.3:a:kukufm:kukufm:1.12.7:*:*:*:*:android:*:*

History

01 Apr 2025, 20:25

Type	Values Removed	Values Added
CPE		cpe:2.3:a:kukufm:kukufm:1.12.7:::::android::
References	~~() https://pastebin.com/0cb0KsGS -~~	() https://pastebin.com/0cb0KsGS - Exploit
First Time		Kukufm kukufm Kukufm

24 Mar 2025, 15:15

Type	Values Removed	Values Added
References	~~{'url': 'https://nvd.nist.gov/vuln/detail/CVE-2023-46918', 'name': 'https://nvd.nist.gov/vuln/detail/CVE-2023-46918', 'tags': [], 'refsource': ''}~~ ~~{'url': 'https://nvd.nist.gov/vuln/detail/CVE-2017-16835', 'name': 'https://nvd.nist.gov/vuln/detail/CVE-2017-16835', 'tags': [], 'refsource': ''}~~

20 Mar 2025, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-20 21:15

Updated : 2025-04-01 20:25

NVD link : CVE-2025-25758

Mitre link : CVE-2025-25758

JSON object : View

Products Affected

kukufm

kukufm

CWE

No CWE.

JSON object

Attach tags to CVE-2025-25758

Attach tags to `CVE-2025-25758`