CVE Catalog

CVE-2025-25370

MediumCVSS 4.6
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.19%

9th percentile - higher than 9% of all known CVEs

Summary

A vulnerability in the realme GT 2 (RMX3311) running Android 14 with realme UI 5.0 allows a physically proximate attacker to obtain sensitive information via the show app only setting function.

Risk Assessment

An attacker with physical access to the device can leak confidential data, posing a threat to user privacy and the security of information stored on the phone.

Recommendation

It is recommended to update the device software to the latest version provided by the manufacturer and to limit physical access to the phone in public places.

Original NVD description (English source)

An issue in realme GT 2 (RMX3311) running Android 14 with realme UI 5.0 allows a physically proximate attacker to obtain sensitive information via the show app only setting function.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS