CWE · MITRE source
CWE-926Improper Export of Android Application Components
The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains.
The attacks and consequences of improperly exporting a component may depend on the exported component:
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2021-25400 | 1.6 | 7.8 | 0.0005 | 2021-06-11 |
CVE-2025-32347 | 1.6 | 7.8 | 0.0001 | 2025-09-04 |
CVE-2025-15464 | 1.5 | 7.5 | 0.0002 | 2026-01-08 |
CVE-2021-25388 | 1.4 | 7.1 | 0.0001 | 2021-06-11 |
CVE-2021-25397 | 1.4 | 6.8 | 0.0002 | 2021-06-11 |
CVE-2023-41960 | 1.4 | 7.1 | 0.0007 | 2023-10-25 |
CVE-2024-36437 | 1.3 | 6.5 | 0.0018 | 2025-02-03 |
CVE-2025-27599 | 1.3 | 6.5 | 0.0025 | 2025-04-18 |
CVE-2023-20962 | 1.1 | 5.5 | 0.0003 | 2023-03-24 |
CVE-2023-21485 | 1.1 | 5.3 | 0.0017 | 2023-05-04 |
CVE-2023-21486 | 1.1 | 5.3 | 0.0010 | 2023-05-04 |
CVE-2021-4438 | 1.1 | 5.3 | 0.0004 | 2024-04-07 |
CVE-2025-20934 | 1.1 | 5.5 | 0.0006 | 2025-04-08 |
CVE-2025-7889 | 1.1 | 5.3 | 0.0003 | 2025-07-20 |
CVE-2025-7890 | 1.1 | 5.3 | 0.0004 | 2025-07-20 |
CVE-2025-7891 | 1.1 | 5.3 | 0.0005 | 2025-07-20 |
CVE-2025-7892 | 1.1 | 5.3 | 0.0005 | 2025-07-20 |
CVE-2025-7893 | 1.1 | 5.3 | 0.0004 | 2025-07-20 |
CVE-2025-7940 | 1.1 | 5.3 | 0.0002 | 2025-07-21 |
CVE-2025-8207 | 1.1 | 5.3 | 0.0003 | 2025-07-26 |
CVE-2025-8210 | 1.1 | 5.3 | 0.0003 | 2025-07-26 |
CVE-2025-8257 | 1.1 | 5.3 | 0.0003 | 2025-07-28 |
CVE-2025-8258 | 1.1 | 5.3 | 0.0003 | 2025-07-28 |
CVE-2025-8275 | 1.1 | 5.3 | 0.0002 | 2025-07-28 |
CVE-2025-8512 | 1.1 | 5.3 | 0.0002 | 2025-08-03 |