CVE-2025-27389

Vulnerability Description

A flaw exists in the verification of application installation sources within ColorOS. Under specific conditions, this issue may cause the risk detection mechanism to fail, which could allow malicious applications to be installed without proper warning.

Related Weaknesses (CWE)

CWE-290

References

https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-199649371566506

FAQ

What is CVE-2025-27389?

CVE-2025-27389 is a documented vulnerability. A flaw exists in the verification of application installation sources within ColorOS. Under specific conditions, this issue may cause the risk detection mechanism to fail, which could allow malicious ...

How severe is CVE-2025-27389?

CVSS scoring is not yet available for CVE-2025-27389. Check NVD for updates.

Is there a patch for CVE-2025-27389?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.