CVE-2025-63432 | Xtooltech Xtool AnyScan Android Application up to 4.40.40 SSL certificate validation

Inserito da Angelo Barbosa | Nov 24, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Xtooltech Xtool AnyScan Android Application up to 4.40.40. Affected by this issue is some unknown functionality of the component SSL Handler. Performing manipulation results in improper certificate validation.

This vulnerability is identified as CVE-2025-63432. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-63432 | Xtooltech Xtool AnyScan Android Application up to 4.40.40 SSL certificate validation

Post correlati

CVE-2023-37187 | C-Blosc2 up to 2.9.2 zfp/blosc2-zfp.c zfp_acc_decompress null pointer dereference (Issue 520)

CVE-2024-31004 | Axiomatic Bento4 1.6.0-641 Ap4StsdAtom.cpp AP4_StsdAtom Privilege Escalation (Issue 941)

CVE-2024-5739 | LINE Client up to 14.9.0 on iOS In-app Browser cross site scripting

CVE-2023-46051 | TeX Live 944e257 tounicode.c null pointer dereference