CVE-2025-15385CRITICAL 9.8EPSS p9.9%

CVE-2025-15385CVE-2025-15385

Description

Insufficient Verification of Data Authenticity vulnerability in TECNO Mobile com.Afmobi.Boomplayer allows Authentication Bypass.This issue affects com.Afmobi.Boomplayer: 7.4.63.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.20% probability of exploitation · percentile 9.9% · 2026-06-19T12:03:05Z
Published2026-01-06
Last modified2026-01-30

Underlying weaknesses· 1

CWE-345

References

  1. https://security.tecno.com/SRC/securityUpdates

1

TypeTargetConfidenceTier
WeaknessInsufficient Verification of Data Authenticitycwe-3450%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-6172
CVE
CVE-2025-7355
CVE
CVE-2025-9342
CVE
CVE-2025-52824
CVE
CVE-2025-4378
CVE
CVE-2025-10855
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.