QwikSec

Security Database

CVE

CWE

Training

CVE-2025-14817

Published: Dec 17, 2025

Modified: Dec 17, 2025

PUBLISHED

Description

The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction.

Vendor	Product	Versions
TECNO	Tecno Pova6 Pro 5G	affected `HiOS V14.0.0`

Weaknesses (CWE)

References

https://security.tecno.com/SRC/securityUpdates

https://security.tecno.com/SRC/blogdetail/434?lang=en_US

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.