CVE-2023-35674
CVE-2023-35674
Vexday Risk Score
71High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 8.8EPSS 2.2%KEV simPoC públicaPatch —
Lifecycle
11 Sep 2023Public PoC
11 Sep 2023Published on NVD
13 Sep 2023Active exploitation (CISA KEV)
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short
A flaw in Android's WindowState allows an app to launch background activities without proper restrictions, potentially letting it gain unauthorized privileges on the device. This happens due to a logic error and doesn't require user interaction.
Technical detail
A logic error in WindowState.java onCreate method permits launching of background activities without enforcing intended restrictions, enabling local privilege escalation. The vulnerability requires no additional execution privileges and is exploitable without user interaction, presenting a direct path to unauthorized capability elevation.
Summary generated and translated by AI from the official description.
In onCreate of WindowState.java, there is a possible way to launch a background activity due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
Google · Androidpublic PoCs found — 2
githubgithub.com/SpiralBL0CK/Guide-and-theoretical-code-for-CVE-2023-35674★ 2githubgithub.com/Thampakon/CVE-2023-35674★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →