{
  "title": "Android Framework CVE-2025-48595: KEV Local Privilege Escalation",
  "summary": "CISA added Android Framework CVE-2025-48595 to its KEV catalog on 2026-06-02 due to active exploitation. This high-severity integer overflow vulnerability in the Android Framework allows local attackers to achieve arbitrary code execution and escalate privileges without requiring user interaction.",
  "date": "2026-06-02",
  "severity": "high",
  "tags": [
    "android",
    "framework",
    "cisa-kev",
    "privilege-escalation",
    "zero-day"
  ],
  "sources_count": 3,
  "indicators": {
    "slug": "android-framework-cve-2025-48595-kev",
    "since": "2026-06-02T00:00:00Z",
    "until": "2026-06-02T23:59:59Z",
    "ecosystem": "",
    "cves": [
      "CVE-2025-48595"
    ],
    "cwes": [
      "CWE-190"
    ],
    "advisoryIds": [],
    "products": [
      "Android Framework"
    ],
    "packages": [
      "android-framework"
    ],
    "versions": [],
    "affectedVersions": [
      "14, 15, 16"
    ],
    "fixedVersions": [],
    "files": [],
    "paths": [],
    "services": [],
    "domains": [],
    "urls": [],
    "ips": [],
    "hashes": [],
    "processPatterns": [],
    "networkPatterns": [],
    "telemetrySelectors": [
      "android",
      "integer overflow"
    ]
  }
}