cvedb.io
CVE-2025-57452
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2025-09-18T15:15:38.220 · Last modified 2026-06-17T09:43:09.103

Summary

In realme BackupRestore app v15.1.12_2810c08_250314, improper URI scheme handling in com.coloros.pc.PcToolMainActivity allows local attackers to cause a crash and potential XSS via crafted ADB intents.

Affected products

realme — clone_phone

Does this affect you?

Add your gear to cvedb and we'll alert you only when realme ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.