PULSE
LIVE18signals / 24h
FEED
ransomthegentlemen reclama a Military Sealift Command · US · Transportation/Logisticsransomthegentlemen reclama a Advantage Home Health Care · US · Healthcareransomthegentlemen reclama a Sunway Scientific · TW · Manufacturingransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomthegentlemen reclama a Military Sealift Command · US · Transportation/Logisticsransomthegentlemen reclama a Advantage Home Health Care · US · Healthcareransomthegentlemen reclama a Sunway Scientific · TW · Manufacturingransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Services
← All CVEs
CVE Watch

CVE-2023-20963

Android Framework Privilege Escalation Vulnerability

CVSS

No CVSS

EPSS

1.4%

p70

KEV

YES

Apr 13, 2023

Exploit Today

71

0-100

Published: · Last modified:

EPSS · 30d
1.4%EPSS · 30 days1.4%
2026-06-302026-07-17
KEV catalog record

Product

Android / Framework

Vulnerability

Android Framework Privilege Escalation Vulnerability

Added to KEV

Apr 13, 2023

Remediate by

May 4, 2023

Known ransomware use

No

Summary description

Android Framework contains an unspecified vulnerability that allows for privilege escalation after updating an app to a higher Target SDK with no additional execution privileges needed.

Required action

Apply updates per vendor instructions.

Notes

https://source.android.com/docs/security/bulletin/2023-03-01; https://nvd.nist.gov/vuln/detail/CVE-2023-20963

Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2023-35674
80.5%
KEV74Android Framework Privilege Escalation Vulnerability
CVE-2025-48595
74.8%
KEV72Android Framework Integer Overflow Vulnerability
CVE-2024-43093
49.5%
KEV65Android Framework Privilege Escalation Vulnerability
CVE-2025-48633
16.2%
KEV55Android Framework Information Disclosure Vulnerability
CVE-2025-48572
14.0%
KEV54Android Framework Privilege Escalation Vulnerability