CVE-2025-14817

CVE-2025-14817: Factory Mode App Exists Privilege Escalation Issue Allowing Third-Party Apps to Open ADB

Vendor Tecno
Product Tecno Pova6 Pro 5G
Weakness CWE-862 · Missing authorization
Published December 17, 2025
Last update December 17, 2025

CVSS base score

What the vulnerability does

01Description

The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction.

Key dates

02Disclosure timeline

December 17, 2025 CVE published
December 17, 2025 Record updated

Related vulnerabilities

04Related CVE