CVE-2023-35674

HIGH KEV

Google Android - Improper Privilege Management

Title source: rule

Description

In onCreate of WindowState.java, there is a possible way to launch a background activity due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Exploits (2)

nomisec THEORETICAL 2 stars

by SpiralBL0CK · poc

https://github.com/SpiralBL0CK/Guide-and-theoretical-code-for-CVE-2023-35674

View Code ZIP pw:eip

nomisec WRITEUP

by Thampakon · poc

https://github.com/Thampakon/CVE-2023-35674

View Code ZIP pw:eip

References (3)

[Patch] https://android.googlesource.com/platform/frameworks/base/+/7428962d3b064ce1122809d87af65099d1129c9e

[Patch, Vendor Advisory] https://source.android.com/security/bulletin/2023-09-01

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-35674

Scores

CVSS v3 7.8

EPSS 0.0009

EPSS Percentile 25.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2023-09-13

VulnCheck KEV 2023-09-05

InTheWild.io 2023-09-05

ENISA EUVD EUVD-2023-39674

CWE

CWE-269

Status published

Products (4)

google/android 11.0

google/android 12.0

google/android 12.1

google/android 13.0

Published Sep 11, 2023

KEV Added Sep 13, 2023

Tracked Since Feb 18, 2026