Lucene search
K

4 matches found

OSV
OSV
added 2023/09/11 9:15 p.m.4 views

CVE-2023-35674

In onCreate of WindowState.java, there is a possible way to launch a background activity due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.02203EPSS
Exploits0References3
CVE
CVE
added 2023/09/11 8:9 p.m.710 views

CVE-2023-35674

The CVE-2023-35674 issue affects the Android Framework, specifically an onCreate path in WindowState.java that can launch a background activity due to a logic error. This enables local elevation of privilege without extra execution privileges and without user interaction. The Android Security Bul...

8.8CVSS7.7AI score0.02203EPSS
In wildExploits0References3Affected Software1
Circl
Circl
added 2023/09/06 4:5 p.m.7 views

CVE-2023-35674

creationtimestamp| type| source ---|---|--- 2023-09-06 16:05:21+00:00| exploited| https://t.me/thehackernews/3835 2023-09-06 17:11:46+00:00| seen| Telegram/63J2pVQJBaIknmjZGAIHn5x98Q9jXCZX7v9RgXfkNAcIQ 2023-09-06 18:31:04+00:00| seen| https://t.me/KomunitiSiber/752 2023-09-07 09:36:42+00:00| seen...

8.8CVSS7AI score0.02203EPSS
Exploits0References14
The Hacker News
The Hacker News
added 2023/09/06 2:2 p.m.65 views

Zero-Day Alert: Latest Android Patch Update Includes Fix for Newly Actively Exploited Flaw

Google has rolled out monthly security patches for Android to address a number of flaws, including a zero-day bug that it said may have been exploited in the wild. Tracked as CVE-2023-35674, the high-severity vulnerability is described as a case of privilege escalation impacting the Android...

8AI score0.02203EPSS
Exploits0
Rows per page
Query Builder